Report - flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=

Report Overview

Submitted URL
flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
IP
104.21.19.111
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-07 17:15:38
Access
public
Website Title
Download your premium content now!
Final URL
flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
296

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
flaredownload.com	unknown	2024-01-18	2024-01-19	2024-04-18	147 kB	3.1 MB	104.21.19.111
event.secureanalytic.com	30491	2019-05-02	2021-07-14	2024-05-04	1.1 kB	3.2 kB	188.114.97.1
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-07	3.9 kB	130 kB	216.58.207.227
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-05-06	512 B	1.2 kB	35.244.181.201
secureanalytic.com	13422	2019-05-02	2015-12-31	2024-05-04	449 B	9.5 kB	104.21.77.48
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-07	956 B	23 kB	216.58.207.234
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-07	426 B	219 kB	142.250.74.40

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed
2024-05-07	medium	flaredownload.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	flaredownload.com/assets/hl-edb2da2a.js	1.4 kB	2024-04-18	2024-05-19
Pretty URL flaredownload.com/assets/hl-edb2da2a.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-04-18 12:16:43 Last Seen2024-05-19 18:05:56 Times Seen173 Hash 0fb9d8a5fba7f6a569da52896f965ea3 6e57202028341c2674083acf9e428817c6725c6c 30137b4b0317a40d0c195fff2b2cd054bb39adf2fb94d357f269cb36e3c11581 Loading...

	flaredownload.com/assets/hl-e2b7dcad.js	774 B	2024-05-07	2024-05-07
Pretty URL flaredownload.com/assets/hl-e2b7dcad.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-07 19:15:40 Last Seen2024-05-07 19:15:41 Times Seen1 Hash 3c6ceb4c99a88512b22165c9e8bd97c3 e2b6f0c5a389d68c7bc23e0e849b43989e6f5de0 f35e4f13fc8255936250dbcb9a16a62d061c3fe2ea450d48a4098545d23b1693 Loading...

	flaredownload.com/assets/hl-bdd7d0a6.js	1.1 kB	2024-05-07	2024-05-07
Pretty URL flaredownload.com/assets/hl-bdd7d0a6.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:15:41 Last Seen2024-05-07 19:15:41 Times Seen2 Hash 5241b94253552f6294dbfb1179313651 cbc6eb4153ed373e77c25a5d91d05165e8914930 10ab7cd7827113ffd70dbbbc6f7320aac05a102521e3b5a392061771083f5775 Loading...

	flaredownload.com/assets/hl-346b376b.js	1.9 kB	2024-05-07	2024-05-08
Pretty URL flaredownload.com/assets/hl-346b376b.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-07 16:33:30 Last Seen2024-05-08 06:09:38 Times Seen4 Hash cd56ae20871b8538f7e7853ca23327d5 0cae750a51f95719db7b6e35b89e92c4f1ccb62f efd8cf49b9d3728a6b01efd2ccf83055e5dcad927b3ed9800266e490b2086c06 Loading...

	flaredownload.com/assets/hl-76eb7d98.js	616 B	2024-05-07	2024-05-08
Pretty URL flaredownload.com/assets/hl-76eb7d98.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:33:30 Last Seen2024-05-08 06:09:37 Times Seen4 Hash c04e5b36bb60d35ef0895fa466ef613d e1ced0cdfc9aa890739dcb5333b658ba255177d5 eced87f52ba8e2d03a886ff2a6d4fbf87acd7f7892a0317527dfa6df58659f67 Loading...

	flaredownload.com/assets/hl-e625189b.js	3.2 kB	2024-05-07	2024-05-08
Pretty URL flaredownload.com/assets/hl-e625189b.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:33:29 Last Seen2024-05-08 06:09:37 Times Seen3 Hash dc6b2da99797e3602c93b0e37a9c1807 f966bdd7a2a8c7e6a55cfe037edd28499c9ce7d9 213aee5abb58ddcef2e08524327c211ea0debfc23f673cfd85b0308bb2ac9483 Loading...

	www.googletagmanager.com/gtag/js?id=AW-597243495	218 kB	2024-05-07	2024-05-07
Pretty URL www.googletagmanager.com/gtag/js?id=AW-597243495 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:15:41 Last Seen2024-05-07 19:15:41 Times Seen2 Hash e71c5ffce6df308c6d06511ee4525899 f4aeda9492344a2eaf6447c888dc0fc53809af52 3235a3433ae5bdd084429f92608bac47b51a68cb2ef6a9d601fcfa6231ec351b Loading...

	secureanalytic.com/scripts/push/script/02eyoyxdkz?url=flaredownload.com	8.1 kB	2024-05-02	2024-05-19
Pretty URL secureanalytic.com/scripts/push/script/02eyoyxdkz?url=flaredownload.com IP 104.21.77.48 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 23:53:13 Last Seen2024-05-19 18:05:56 Times Seen80 Hash f0fab3cc04750bba62119045aad0cca4 c4bac1f34757d7d9553b0f9d23b1d419e908e62e 4590979b3d0fa22e8974e8b9d80124d0f02b6accbb154ff6e9c67b59e9fcf2c6 Loading...

	flaredownload.com/assets/hl-b456c08f.js	415 kB	2024-05-07	2024-05-07
Pretty URL flaredownload.com/assets/hl-b456c08f.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-07 19:15:41 Last Seen2024-05-07 19:15:41 Times Seen3 Hash 75fc5dfb4def286f360fd3e9b60e3258 604f5b768a4c908346eb658ae1ced8fa899d3ab1 52f5ccfc09288beb5d15e5e4fce478886f53da4472c12b7a98eb3ec9bea7baa7 Loading...

	flaredownload.com/assets/hl-5975d21c.js	358 kB	2024-05-07	2024-05-07
Pretty URL flaredownload.com/assets/hl-5975d21c.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-07 19:15:41 Last Seen2024-05-07 19:15:41 Times Seen3 Hash 4d8009bb30dc1d97f408e5505d79337e 8a215147051bf2cedc5c187e1bf21c315e706fb6 9616f8c43600f2ce985ec1cd5f9b38a2aa7ba11f8a3fbdeb707cb0e9b1ab2833 Loading...

	flaredownload.com/assets/hl-016c1a2d.js	266 kB	2024-05-07	2024-05-08
Pretty URL flaredownload.com/assets/hl-016c1a2d.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:33:29 Last Seen2024-05-08 06:09:38 Times Seen9 Hash 6f9b2057062a1662be08363e30596a68 f82cded4ee9eecfbc1712e636c6fe4fadc8ec0d1 c00ad680dd0968e24075c04746e1a39be2a69cd9c3a374bae7587fd4d0454d54 Loading...

	flaredownload.com/assets/hl-1ef1ca3c.js	2.9 kB	2024-05-07	2024-05-07
Pretty URL flaredownload.com/assets/hl-1ef1ca3c.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:15:41 Last Seen2024-05-07 19:15:41 Times Seen2 Hash 22cb9c0ed4d6f2910f9faf573478a5ce 8e62bebdc860eba3d3808970290df8e84e4f345b 900f604a0abb997eaccaa75c6456d1d32bf7bb26d24508876c2bc25777a87728 Loading...

	flaredownload.com/assets/hl-3648b8b5.js	687 B	2024-05-07	2024-05-07
Pretty URL flaredownload.com/assets/hl-3648b8b5.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-07 17:37:03 Last Seen2024-05-07 19:15:41 Times Seen3 Hash dd11f99fe04c8fb18e10f03d1908ac20 aecf91e0da003448159f0436f0e0e563687433b2 cedfe24cf05cafad07db26347a47f5644bb06a489837e5e83671e9be4226398b Loading...

	flaredownload.com/assets/hl-8ecdb346.js	6.3 kB	2024-05-07	2024-05-08
Pretty URL flaredownload.com/assets/hl-8ecdb346.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-07 16:33:30 Last Seen2024-05-08 06:09:38 Times Seen4 Hash a0891e0d0ae5d3784fcc2855237e2e59 fbc7368dbe6657799b9e1ff17393ab13acaeaf98 f9347681a1baa2a457fae6aa36a38305aec428c487504e5a7c2cfb1953488d1f Loading...

	flaredownload.com/assets/hl-449fd3ca.js	418 B	2024-05-07	2024-05-08
Pretty URL flaredownload.com/assets/hl-449fd3ca.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-07 16:33:30 Last Seen2024-05-08 06:09:38 Times Seen7 Hash a681492b373cf4f95d2121a01c44dfeb ede05f02d805cf75b35f7392d799722031dfa0c8 041691ae588a49650498b9ed5de6641bb9d5f41834c0f3f638c25c40d59796a8 Loading...

	flaredownload.com/assets/hl-de833af9.js	690 B	2023-11-04	2024-05-19
Pretty URL flaredownload.com/assets/hl-de833af9.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-11-04 19:20:12 Last Seen2024-05-19 18:05:56 Times Seen186 Hash 07f4201d4f772dc3825f3399bb217552 e70c0af48037b02ab9ea515952b889f9eb7bcdb1 5103bcdb5637c56d4a70564479cef8e07ec2d3f00620b428cdb36c28c430d906 Loading...

	flaredownload.com/assets/hl-a99ab87a.js	529 B	2024-05-07	2024-05-07
Pretty URL flaredownload.com/assets/hl-a99ab87a.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-07 17:37:02 Last Seen2024-05-07 19:15:41 Times Seen2 Hash 40c4d3620e03a829cfd9a04ea9993c47 da6ab22cdbe49ad77ca2d174603d131f132abb4c 89a403a104f4296c4328b8826d9789b180ab46512cc6ece607a7963b0d17e8d7 Loading...

	flaredownload.com/assets/hl-df71e98f.js	915 B	2024-05-07	2024-05-08
Pretty URL flaredownload.com/assets/hl-df71e98f.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-07 16:33:30 Last Seen2024-05-08 06:09:38 Times Seen6 Hash 60a5eed01c0dddc43d1759559fd28060 1e925a2e069a52ff67cd312e1fe8fa8f4f6d2fef ac592a8b360e2139a861144c2c666bf0af96809e06e392171549d3ad9c0f3e06 Loading...

	flaredownload.com/assets/hl-1d9299f0.js	1.3 kB	2024-05-07	2024-05-08
Pretty URL flaredownload.com/assets/hl-1d9299f0.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:33:29 Last Seen2024-05-08 06:09:38 Times Seen8 Hash d30d63e213b7d35b73f36beaef1cf4bb 0ecfd946d636dc44f170642cf18d1492eb7d09d9 af59a1cb10bd70b6c0eb7eb16d7fdf201ffcd46e80d56e1e8415daf4ac401950 Loading...

	unknown	160 B	2024-05-03	2024-05-14
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 21:51:51 Last Seen2024-05-14 23:45:48 Times Seen5 Hash a0651512813d21729c2cb81dab9a08e1 b7bdc2f95c7c64dc8dc73ea885f069ff1384d0b2 22e15beb9ee691b59af1966c4723e08ec5cfadf0387af98832b0e457d4ef54fe Loading...

	flaredownload.com/assets/hl-b0e6ff5c.js	429 B	2024-05-07	2024-05-07
Pretty URL flaredownload.com/assets/hl-b0e6ff5c.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:15:41 Last Seen2024-05-07 19:15:41 Times Seen2 Hash 63e380b026c4bbcb3dca79868f4adc1c c5007806d4c4fc0dfbb7559ef1321826aab4d157 6fc31aac2775731eb49fd0cbf47ef163e7b9a87b0b400a36ccee1741178f2f22 Loading...

	flaredownload.com/assets/hl-4ae220c2.js	779 B	2024-05-07	2024-05-08
Pretty URL flaredownload.com/assets/hl-4ae220c2.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:33:30 Last Seen2024-05-08 06:09:38 Times Seen6 Hash 425b8e07905530ece899be3e471f8de4 050b8cd6c8dded4cb5860882d4b69254563e501b c3cb2ecc41b20ffc0de2ee68d324287446c486d8b6dcbcddeefb6efad65d12bd Loading...

	flaredownload.com/assets/hl-5d7a8293.js	4.8 kB	2024-05-07	2024-05-08
Pretty URL flaredownload.com/assets/hl-5d7a8293.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:33:29 Last Seen2024-05-08 06:09:37 Times Seen8 Hash d2bc469eed16dc86100f035b1c5f966d 29e00d2e444fb3d19c26bd32942c2d6bc230c971 2dac1f01abbc36e492fad1b852eb6ef3138186d56b93504d6a86d3af15a93345 Loading...

	flaredownload.com/assets/hl-35a77ba0.js	72 kB	2024-04-18	2024-05-19
Pretty URL flaredownload.com/assets/hl-35a77ba0.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-04-18 12:16:42 Last Seen2024-05-19 18:05:56 Times Seen186 Hash f87da472e47dc575b6cb8dc377d18916 bff262654ae71f3be0a658cfbe5a53c787c05d55 5c38207c92f3650eaef6616521c8b1e0a03ceb384030f1c2b67cb75e25925ca8 Loading...

	flaredownload.com/assets/hl-b598c105.js	561 B	2024-05-07	2024-05-08
Pretty URL flaredownload.com/assets/hl-b598c105.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2024-05-07 16:33:30 Last Seen2024-05-08 06:09:38 Times Seen6 Hash 572a8d2fc6e9403a186c47bc4299d87a 8885cc21801bcca938fb2ed9fea47fca6c27a56a aafbc4631c3ac6344630f7a8b26797f44c3619ec734d9081f5d6c3232d13c834 Loading...

	flaredownload.com/assets/hl-df7628f8.js	2.8 kB	2024-05-07	2024-05-08
Pretty URL flaredownload.com/assets/hl-df7628f8.js IP 104.21.19.111 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 16:33:30 Last Seen2024-05-08 06:09:37 Times Seen5 Hash d7336f715313e5c98829f811c8bad75d 483645778f0cbaf444c0ae6c3745aba261bc4c28 371b971cf0c509d16c73815d387a3e8f8ecce48194f3b2671bc4ca84d226daf8 Loading...

HTTP Transactions (162)

URL IP Response Size

flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=

104.21.19.111

200 OK

736 B

URL User Request GET HTTP/2
flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
HTML document, ASCII text
Size
736 B (736 bytes)
Hash
8dc78ba2a5f4c427e7f028168597c31e
fec4d3d8349605b55889d400807abe909a7161b6
f667330eb2e2f2dc25e3a611c723c55654f4faafdc7fb781dfc557ca43b9f7c4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource= HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 17:15:11 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xgzCrqywQFEb1Bq1XdyT93Fhc410qng%2BjdnTxU3uX4WnpjB%2BqoPRmDd4shHTi0A7y5DMucgKyo%2BV3sah%2B6C6VDdV%2Fo2lcSCf0RBPqJh4spDF87oudYe0GZk%2FS1h3kUNs44PY%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8802d9c1bf881c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

flaredownload.com/visit/get-data?landingId=4071&subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=

104.21.19.111

200 OK

8.7 kB

URL GET HTTP/3
flaredownload.com/visit/get-data?landingId=4071&subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JSON text data
Size
8.7 kB (8691 bytes)
Hash
7d18300d9111b71a412ac37377945a42
9fd603a7527ee8870e21143c58a5159095d31da2
0ad9bb296fe54c958592df1a99fda37e4ae67fffe14a1a46de4bcbcecb3e5cf5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /visit/get-data?landingId=4071&subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource= HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
sentry-trace: e895a96cd36e4699b4c34c75a4b4905d-94bf699bdaecbe5f-1
baggage: sentry-environment=production,sentry-public_key=9056b383582c444792eb65c1726488d9,sentry-trace_id=e895a96cd36e4699b4c34c75a4b4905d,sentry-sample_rate=0.1,sentry-sampled=true
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:11 GMT
content-type: application/json; charset=UTF-8
set-cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; path=/; HttpOnly; SameSite=Lax
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3Lvy96oJvtNkHrvRyOf3oR3%2Bh7k3BxSvyagDh84%2F1YtiockR9WAc2oYE2x4sjJ7QMVowvMMs%2BJQJ5JSHliy%2FM7DogWd9qvweJ1gHnnGU4Vcv8zS%2FiZZR3ZYhaVrtR8Wneel%2Fnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8802d9c6aead56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-1ef1ca3c.js

104.21.19.111

200 OK

63 kB

URL GET HTTP/3
flaredownload.com/assets/hl-1ef1ca3c.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (2885), with no line terminators
Size
63 kB (63386 bytes)
Hash
22cb9c0ed4d6f2910f9faf573478a5ce
8e62bebdc860eba3d3808970290df8e84e4f345b
900f604a0abb997eaccaa75c6456d1d32bf7bb26d24508876c2bc25777a87728

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-1ef1ca3c.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2886
access-control-allow-origin: *
etag: W/"6639e6e3-b46"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p%2Bwv6%2FhqCBlcgJ2PJYjCy1bQceKwime5QmfNEKgmskcUwnDwEdA6AcVogW1dUB5iDCfoH%2FJ82jojwTdYOmbJ%2FN5YT2GYIl4jyna8A52o2Toi5CBoB5ZpaMa0zXI5YAFwLZ0ZlYlPTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9c96c8e56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-016c1a2d.js

104.21.19.111

200 OK

173 kB

URL GET HTTP/3
flaredownload.com/assets/hl-016c1a2d.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
173 kB (173136 bytes)
Hash
6f9b2057062a1662be08363e30596a68
f82cded4ee9eecfbc1712e636c6fe4fadc8ec0d1
c00ad680dd0968e24075c04746e1a39be2a69cd9c3a374bae7587fd4d0454d54

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-016c1a2d.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=266407
access-control-allow-origin: *
etag: W/"6639e6e3-410a7"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sKUpQZzEMsB0n2%2FssSb86%2FhC2sZ%2F39yb9O3g0mueD27aeHHCVwIlSZPJevdbffhqMN3Czth%2BZTmHkax52JM7llhKzbg3uAEKmHdDjaSVTEwZ0G1GNhA7fL2nEYuNswAjjfKqPBVb3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 8802d9c97c9456c6-OSL
content-encoding: br

flaredownload.com/assets/hl-b0e6ff5c.js

104.21.19.111

200 OK

34 kB

URL GET HTTP/3
flaredownload.com/assets/hl-b0e6ff5c.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
Java source, ASCII text, with very long lines (428)
Size
34 kB (34104 bytes)
Hash
63e380b026c4bbcb3dca79868f4adc1c
c5007806d4c4fc0dfbb7559ef1321826aab4d157
6fc31aac2775731eb49fd0cbf47ef163e7b9a87b0b400a36ccee1741178f2f22

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-b0e6ff5c.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 08:31:31 GMT
etag: W/"6639e6e3-1ad"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PQNdSHCzd5GnQF96zZfXvwZpQjqmJPIEkkFrOUm9f1SAG7tpsAfOGyfG88oU8tDl160H3zA%2F0IJQQJeEse2Gx3OlaxBo9Aas6%2F6LxnOZlfjVx7fF7Aeeat9lsvvjkRpcCc9m%2FPLoGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9cbc94e56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

event.secureanalytic.com/register/event_log/v9e179lqez

188.114.97.1

200 OK

0 B

URL POST HTTP/2
event.secureanalytic.com/register/event_log/v9e179lqez
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerLet's Encrypt
Subjectsecureanalytic.com
FingerprintE8:56:22:9E:5D:B8:81:BD:9C:20:0E:24:64:BE:C4:CA:4E:D6:C9:63
ValidityFri, 29 Mar 2024 10:27:40 GMT - Thu, 27 Jun 2024 10:27:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /register/event_log/v9e179lqez HTTP/1.1
Host: event.secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://flaredownload.com/
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-length: 0
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-headers: content-type
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data:
access-control-allow-methods: POST
x-frame-options: SAMEORIGIN
access-control-expose-headers: Authorization, Link, X-Total-Count, X-pushPlatformApp-alert, X-pushPlatformApp-error, X-pushPlatformApp-params
access-control-allow-origin: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()
access-control-max-age: 1800
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xaUB%2Bud%2BaMxkk0RyYh8p%2BxVZUgTdQ8WM5%2B81a9aBXySMpjESCI2ruksgFQU3z%2BC9tUprpWYi3CJ5UdNRf%2BqUOw7JP%2Bbb2ktEe7rA%2Br4R6RY83zB%2Fn9n7AzVYvayy%2BzCRkN44iisZQHNq0Ug%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8802d9ccdd5b5697-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

flaredownload.com/assets/hl-3648b8b5.js

104.21.19.111

200 OK

10 kB

URL GET HTTP/3
flaredownload.com/assets/hl-3648b8b5.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (687), with no line terminators
Size
10 kB (10198 bytes)
Hash
dd11f99fe04c8fb18e10f03d1908ac20
aecf91e0da003448159f0436f0e0e563687433b2
cedfe24cf05cafad07db26347a47f5644bb06a489837e5e83671e9be4226398b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-3648b8b5.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=688
access-control-allow-origin: *
etag: W/"6639e6e3-2b0"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x%2Fbycjn8%2F44ww2v%2F%2Fyc3RS3f%2Bgg%2B1sLwPx%2Br3SKFsQzYy%2BtPo6dr8HAtMKFl8AllnuzyKN72gz4CnCxbiulCpPqwvNZpjdCRtdci42b6Bjz8sgxYg1GaVSmhgXamEBPEXgGo030YjQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9cbd97356c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-35a77ba0.js

104.21.19.111

200 OK

77 kB

URL GET HTTP/3
flaredownload.com/assets/hl-35a77ba0.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (37102)
Size
77 kB (76906 bytes)
Hash
f87da472e47dc575b6cb8dc377d18916
bff262654ae71f3be0a658cfbe5a53c787c05d55
5c38207c92f3650eaef6616521c8b1e0a03ceb384030f1c2b67cb75e25925ca8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-35a77ba0.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=72018
access-control-allow-origin: *
etag: W/"6639e6e3-11952"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lVcE2h2qpwFs%2FBqD%2BbPTM5E%2FdOpI77D2urIhU7e8hxXvfovqFxouIh86RfkUYHzyr0GCbw9rfvQFs7BhNB2BS1zOvshhPu3EgJbxYYUQnvu5hzLq99C0lpoQZWnntMSgmvXBbUCk0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9c83a0d56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

event.secureanalytic.com/register/event_log/v9e179lqez

188.114.97.1

200 OK

0 B

URL POST HTTP/2
event.secureanalytic.com/register/event_log/v9e179lqez
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerLet's Encrypt
Subjectsecureanalytic.com
FingerprintE8:56:22:9E:5D:B8:81:BD:9C:20:0E:24:64:BE:C4:CA:4E:D6:C9:63
ValidityFri, 29 Mar 2024 10:27:40 GMT - Thu, 27 Jun 2024 10:27:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /register/event_log/v9e179lqez HTTP/1.1
Host: event.secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/
Content-type: application/json
Content-Length: 114
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-length: 0
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-pushplatformapp-params: 
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data:
x-pushplatformapp-alert: pushPlatformApp.pushSubscription.deleted
x-frame-options: SAMEORIGIN
access-control-expose-headers: Authorization, Link, X-Total-Count, X-pushPlatformApp-alert, X-pushPlatformApp-error, X-pushPlatformApp-params
access-control-allow-origin: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QlssGh41vTxN1DkkUc6QAdb27hykOIhreALqzFy8yj8S9sionSrp3wUqtZcs%2F6fkWRMm0kA6gTM2aIlslDzFQyFLnKrxiEtkcB1zI7oESmpooYkYlCT5E1IB9vpCSHnIyFgxTSHLRMddksU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8802d9cdaf255697-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

flaredownload.com/assets/hl-1d9299f0.js

104.21.19.111

200 OK

32 kB

URL GET HTTP/3
flaredownload.com/assets/hl-1d9299f0.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (305)
Size
32 kB (31587 bytes)
Hash
d30d63e213b7d35b73f36beaef1cf4bb
0ecfd946d636dc44f170642cf18d1492eb7d09d9
af59a1cb10bd70b6c0eb7eb16d7fdf201ffcd46e80d56e1e8415daf4ac401950

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-1d9299f0.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1286
access-control-allow-origin: *
etag: W/"6639e6e3-506"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3YiGo4%2BPXXdBak%2F82L4Ava%2FgWa9Lj4Wf4T%2BCJeRPYaAC4%2F6AomJaM2j7Gnu1bbSTBO1XKchq17fACCIDPJ9qfptf12h81Zq5ccShLmdmwllY9xapaL042mWg6Y7uRGIm6gweSDyXaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9c83a0756c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-7c4a2d22.jpg

104.21.19.111

200 OK

4.3 kB

URL GET HTTP/3
flaredownload.com/assets/hl-7c4a2d22.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.3 kB (4325 bytes)
Hash
c0e9d981499ee8bd6483ef0c60288680
2c5d60a8dc4e59235a618a75fc4c28dd7611104a
7c4a2d22540173ee4ddd83e5dec6f6d652e6d40edc46e2e485ed440cbd4a8cca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-7c4a2d22.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4325
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-10e5"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BU%2FwwS83Pdze%2FhnK5Zy2PqaNKF8UyUwl1UNVHJpxYBfDaznnfccFq7FyjFIfLRLyR6F1vcQxZ5Ah%2FuwqmxFc5OZmxlI48OKEUfOadwDqI42o%2FW%2B7n%2FU9DJfRoZL7bfTKduGLHkq9nw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce4e4156c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/favicon.ico

104.21.19.111

200 OK

6.5 kB

URL GET HTTP/3
flaredownload.com/favicon.ico
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Size
6.5 kB (6489 bytes)
Hash
1ba2ae710d927f13d483fd5d1e548c9b
c0605efed936ee2600284e6480521d06fa64f872
db74ab0b78338c1f778f8398c45f4103c99aea0e845a3118a7750b4eeafd3445

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:11 GMT
content-type: image/x-icon
last-modified: Wed, 13 Sep 2023 08:04:59 GMT
etag: W/"65016d2b-10be"
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1478
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lLE8jGSuuAKewUhBxBF2FLDQ3WgxhqGvBgSl%2B4r9DiLZixIJ1LMYJ09C1l2IVBHdfuoxnIlaWBJEW1AIHaAKnQULQ7ObqNI7KxlPmKdCXKX7qrAFU095SZazWv%2BOc%2FoNoAb3bA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8802d9c73ff556c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-de833af9.js

104.21.19.111

200 OK

4.5 kB

URL GET HTTP/3
flaredownload.com/assets/hl-de833af9.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JavaScript source, ASCII text, with very long lines (690), with no line terminators
Size
4.5 kB (4476 bytes)
Hash
07f4201d4f772dc3825f3399bb217552
e70c0af48037b02ab9ea515952b889f9eb7bcdb1
5103bcdb5637c56d4a70564479cef8e07ec2d3f00620b428cdb36c28c430d906

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-de833af9.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-1d9299f0.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=691
access-control-allow-origin: *
etag: W/"6639e6e3-2b3"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d3mVKlAnuASvtCuisUHgZ0W5r4zgrg74eN9nIdDZs8A7LjD2expFpdR9MfDOf%2FkIspGOIxNftZtYpNX%2BCXLwW1JMaqv0smQZESUehuajCjE%2BAuJRg%2FcP%2FHHkZNvu2YUgwaJUws1%2Bmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8802d9c92bf556c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-1d9299f0.js

104.21.19.111

200 OK

5.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-1d9299f0.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (305)
Size
5.1 kB (5071 bytes)
Hash
d30d63e213b7d35b73f36beaef1cf4bb
0ecfd946d636dc44f170642cf18d1492eb7d09d9
af59a1cb10bd70b6c0eb7eb16d7fdf201ffcd46e80d56e1e8415daf4ac401950

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-1d9299f0.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-016c1a2d.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1286
access-control-allow-origin: *
etag: W/"6639e6e3-506"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3YiGo4%2BPXXdBak%2F82L4Ava%2FgWa9Lj4Wf4T%2BCJeRPYaAC4%2F6AomJaM2j7Gnu1bbSTBO1XKchq17fACCIDPJ9qfptf12h81Zq5ccShLmdmwllY9xapaL042mWg6Y7uRGIm6gweSDyXaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9c84a1556c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-5d7a8293.js

104.21.19.111

200 OK

246 kB

URL GET HTTP/3
flaredownload.com/assets/hl-5d7a8293.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (4793), with no line terminators
Size
246 kB (245542 bytes)
Hash
d2bc469eed16dc86100f035b1c5f966d
29e00d2e444fb3d19c26bd32942c2d6bc230c971
2dac1f01abbc36e492fad1b852eb6ef3138186d56b93504d6a86d3af15a93345

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-5d7a8293.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=4794
access-control-allow-origin: *
etag: W/"6639e6e3-12ba"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gzkS168knr3sapuCvmTdyjBoHCx1DLfiNHVJ5ECgD3M08BiM18RR6dz0bZHiKd2QDbcuJUAAPRe9iZkp8kpLASzo5v%2FZMj2EfEQBIKYLAOBfuBVltGCr29mpD737fX2%2BvseFzRSY0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9c829ca56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-d90918bf.jpg

104.21.19.111

200 OK

4.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-d90918bf.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.2 kB (4173 bytes)
Hash
ddcc82929c9c86c9976988bf36369f3a
924e448d6426c9fa7870ce18fd072ceb60dece1b
d90918bff374f5c261352144d2385f7debe0cc1e8acc1fc0d77f751100d00944

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-d90918bf.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4173
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-104d"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=stJEPlj0Vydeq0q3WYrgGJmJxlxb%2BiE3IDXjoeDNjjALKfp0OLLaNn%2F7CvAAsk2tbqEzZV%2FhrwxhG6YEBtwgXeso6%2B4Eo642OTHFZmzgmDiRutQh1b29wel8nZ5JVKnlpL0EkGxJKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce7ea556c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-55567b9f.jpg

104.21.19.111

200 OK

6.0 kB

URL GET HTTP/3
flaredownload.com/assets/hl-55567b9f.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x99, components 3
Size
6.0 kB (5997 bytes)
Hash
37ba30c335c36f92aa6685b020593781
c600c618e888178da49c25bb9a6982b7aeebb83a
55567b9f662897250f9dd4afe8e34ce0db2e2ae8c1b08a38075c8e20d07d7a15

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-55567b9f.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5997
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-176d"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E2OIte51MjpJ5pXpUY4pgYRmPNpuesNv%2FuVYmX4iIIFNBn4zQFNDOk5DpJ52Ds75slRE0Vzpi6zBOI2kdh2%2F%2Fjz3uZ52WWiPcm5Pellr%2FuiPhxGXGUavPsN4i%2BDu%2FLoHAC9B5e1sbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce7eac56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-75617600.svg

104.21.19.111

200 OK

6.8 kB

URL GET HTTP/3
flaredownload.com/assets/hl-75617600.svg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
SVG Scalable Vector Graphics image
Size
6.8 kB (6750 bytes)
Hash
2539710e0c579e3d2f401c23eca29502
f9fd8fcf34e39f6fae71324a906d55fa190f22d6
75617600653bf82a9b69cd3f57a5fd3235397b3afa29a9980851ad9803225326

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-75617600.svg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: image/svg+xml
last-modified: Tue, 07 May 2024 08:31:30 GMT
etag: W/"6639e6e2-54b"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4fn5isZabyCH2CAOtRrYAy2qArOa7bameMvCc%2B5G6PmCmTmnvzujjYd4ZcffWxEZe9Ho3GsJGJpEtsC%2FByjefeVLDdrJHBfpAfwydq3YH0Ls7HCv96nMwd4PrPLTA1jgL1lXDpAdSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9cded8756c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-cd075775.jpg

104.21.19.111

200 OK

6.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-cd075775.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.1 kB (6122 bytes)
Hash
4a7326065de74576f98f006e43c7b9ab
014067bea7b1960075dda34b0890e63aec6ddc88
cd07577562d794b50a6845858325072db847966bbfccfb5af5b2a5e7aaac326c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-cd075775.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6122
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-17ea"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OEWEXV%2BsIrfMNe7t1CO7qJ2e0K0iz6Xs9tSCQgheeTYq238MFJ9q3aCVmrZalPoho62LuP%2FOXWvMBeKmMz852TwgIPTUVxwds5gNdU32ZLqKVMqDdDtR%2BxwXscMk9nCNkfDqrJUcWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce8ebf56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-2d4320ac.jpg

104.21.19.111

200 OK

5.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-2d4320ac.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.2 kB (5192 bytes)
Hash
183b33091f7ec9316d06becc00f8439c
94b60de71606c99a51ab51a3ad038095bc678d29
2d4320ac742d6cfddccc884940d0e6dfbeab9a12aa891ace20a5a83bce26996e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-2d4320ac.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5192
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1448"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tXM7rbAjEQM%2BOdyfI7YRhu5qOENhAXI9woRkIFmtY3HEUxgl3YpS%2BRFOdfhOvFu9%2FDz4p4n5V3Q2QA%2F3YIe5Lv8rFvYzgrfLp92JDzFErJ9l1vn5J381A8ipcNT8WVxvbh0v3%2FFBVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce8ed156c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-31d9dd33.jpg

104.21.19.111

200 OK

4.8 kB

URL GET HTTP/3
flaredownload.com/assets/hl-31d9dd33.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 98x100, components 3
Size
4.8 kB (4786 bytes)
Hash
a817ea339d19bdc72455a83786b4c1ea
d0a08cdb71278d3f26ea0a338ddddff8ef72f4fe
31d9dd33cbad4ef444f627ece006a2bed24bbe4c80be8e77a52d7301b3c2fca2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-31d9dd33.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4786
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-12b2"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IH0AuQYuH5Z7ieFBV3nnTb30v2Oa4wTIaKu24xi%2BejiL29P3C1mPJa9TZ%2BKmzjQ78m3r2zN7D%2FlA1G0oaIbo2FRx0i4iJ7uyRZkvYRbSH22fwfylRGim5zwg6DeqvX%2BSRAEMHbvPTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce8ebb56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-3048400c.jpg

104.21.19.111

200 OK

4.6 kB

URL GET HTTP/3
flaredownload.com/assets/hl-3048400c.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x98, components 3
Size
4.6 kB (4551 bytes)
Hash
4b8ff995636a0e0120d908d6695b0bca
6d19bbabb051c9445650795d5d4d6eb0930ce570
3048400cde4945ee177495d66c0160c3bba1fdd0d78b08dfb06296a1173f24c0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-3048400c.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4551
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-11c7"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pWUW5WTVqcyUNQuTillFD6fqH87NTVPUFc36fvVM6g4rgyr1oir%2FVQLUn%2FUw44fX4Yu5Y1ez5KrgIOcT1D1mmx33WxqdkKj0adYO1NAtknERVzcVPv%2BgcX0y2prR%2BRgTeC2aAimKrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce8ecf56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-dbad5b89.jpg

104.21.19.111

200 OK

6.5 kB

URL GET HTTP/3
flaredownload.com/assets/hl-dbad5b89.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.5 kB (6522 bytes)
Hash
c12c22a31cdce38f6ceeb1d1279a2f47
bf0338600bf8fec14de84886bc750c166f67e912
dbad5b89f8309e875d6985c171c57eee977e37e7042ca96a9149cfb366817f01

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-dbad5b89.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6522
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-197a"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FqrdItJDYb4ksUlqY6%2BTZnjo9Gjn75%2B8JccNVVAUtQFDeCNo%2FW51p%2FHC6CGd3YXlOHqXEG9E0SGRqX9Xa%2BzncC4eAmsqmowBNxer0aCPnQhlwCW2SdkbVi5VJG7%2BTz9pRXqwXUt0IQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce8ec656c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-92dc59ea.jpg

104.21.19.111

200 OK

4.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-92dc59ea.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.2 kB (4213 bytes)
Hash
d51032327e8510ecc7e9ed14b029955b
8b1959ef2fd17fa68d3066229e5c6b681ace34b8
92dc59eade088be4cc91e9853371058d0e83df34f52e076be85a0b685c9bd8a9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-92dc59ea.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4213
last-modified: Tue, 07 May 2024 08:31:30 GMT
etag: "6639e6e2-1075"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SbuShrhw26Xt%2FOqNznSCmL%2FyW023xtSFtOSkOcwh36rNtIuCI5keW%2BAMLQ%2BaftZNZBp3onwFDG3wvDu%2FgHhsWJ8pCwT7xNeYpF5ved9TUSGD6MSYEAdDc3OGZCHcX2b7M7x9H3evxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce8ed456c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-dd6feb9f.jpg

104.21.19.111

200 OK

5.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-dd6feb9f.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.4 kB (5371 bytes)
Hash
141e25316f38757b1dac075c8eea3646
d5b520791eafe8b6ae1d6aae89de59cae7a9e62d
dd6feb9f01605259f97ee8135a3faa35c7c4b3b88ee488ea3ed912437a3f7082

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-dd6feb9f.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5371
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-14fb"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HP9tmeNb2QjyrFIa%2BaTvanG6nZXyipXHvDf8ydEtJkGY1dFHhA13MLxgEfQQ8ckflyRslLFrAAj9DpWdok0zjnH0cdn7QezZ4r4FEpsKROGxTjjFD4MXxRLK8fD21ZMxwagby3H8OA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce8ec956c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-4203161a.jpg

104.21.19.111

200 OK

5.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-4203161a.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.2 kB (5179 bytes)
Hash
09768664e85d254270e47d93483c925e
a64cb6c0448bed2b618e29d76986734fb97d211b
4203161a40b552fd436a1c4d694b3bdddf8f331f7d6b02e8f9bdb774b757d700

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-4203161a.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5179
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-143b"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S%2BGpUoco0ZfER%2FCxjJhc4vPRf8CZLq1Ywb1zmxOLHkmxW8gdQCAssSrfObSM5FUnWM5zt8e93RAgWp2qw0Ro0UfLaXS7X4QiUwD4arwVwQxlKHJKyqwkW2ZvI%2B49Zpum8FiYIOSSKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce8ecc56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-d4bb825b.jpg

104.21.19.111

200 OK

4.6 kB

URL GET HTTP/3
flaredownload.com/assets/hl-d4bb825b.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x99, components 3
Size
4.6 kB (4594 bytes)
Hash
478d6659d660ba5e271c5b207bc187d1
1003876c7d8ada3f1c7ee3173acb4fdfe2506a99
d4bb825b2340b83517784fd787395d61dbca456a0a2c6df9f98d7e884455b159

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-d4bb825b.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4594
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-11f2"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tQYfW9o9NvyUsdw8qvHmWSlnt4lG4Z8oTvSVPidoqBp5ULQU9n5uCVLG0d8ZE6uXRWOxOZkb3S1KP8ENQ3%2BqWjkv0OzHGwHZelooi4C37kEGBecWDpd%2FETtbJPsn22mECkU%2FN754lw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf4856c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-c8a52200.jpg

104.21.19.111

200 OK

6.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-c8a52200.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.4 kB (6360 bytes)
Hash
82b6ef2b9843b80010c7e5406e28497c
91ec4218ea544141882f6e8e7b9332632290670d
c8a5220081a4b50be0414addaa8c09bf7804175ed045e65d503fb80a8a026bba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-c8a52200.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6360
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-18d8"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fn6S2PA5kDAfcSShR6OlpB3rbD3R3qCvOTqfDOwhrJQnm6KFNb3RPVZlOUU43rNB19EOU%2FHD3v3fn5CPC%2FNDIRL7483D%2BfeNudcVh91u7e6aOdr8JncuT8hdzk4x1lHnTVtWXvIfng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf5156c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-13adc8c1.jpg

104.21.19.111

200 OK

6.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-13adc8c1.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.4 kB (6389 bytes)
Hash
104afca20b4ca7f215bcd91e3ab0d6a3
4e373fb3269a983bb28a7eda108541d8d8c268b9
13adc8c19dd7fdd116325788707fa8c93e70fa7959e7135b6ef6902e49108760

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-13adc8c1.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6389
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-18f5"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xrkZ5o6T%2BtPqmSzwEQ%2Fq7UpvR1YqILX69ov3EKoAHxrTnknw9wb9%2B%2B6pmEKvCTxSy4Nb64N4ELdQkMHehKPDal9qWbHWau%2BkR9QZK7GDRjiG9HoCfETEhNn%2FWFDly3uQXX7ZGk3iNg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf5856c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-f37ac8e3.jpg

104.21.19.111

200 OK

4.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-f37ac8e3.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x99, components 3
Size
4.4 kB (4397 bytes)
Hash
3b8f2262f9d92f0e39c86a38d97ab463
055180870d658cc102415d12cf4e137858f5f5f4
f37ac8e362cc08c45c6b52b1c0ae8447cb10dc41f1741b89cc034730989efb47

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-f37ac8e3.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4397
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-112d"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2anuem4mfa1UfBoYot4sFOH9tQFukMI7YXr1RtWDkb1TpdKXGbeyMlnEQpPJlRwtzrMi9W3e2TLD31sEL1GigU730g9Ywa3QfHum7zLTo%2FZ6E3UKWFcodqQhzAdJOxYMOgsnpJVTNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf5d56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-3bad9cb5.jpg

104.21.19.111

200 OK

5.0 kB

URL GET HTTP/3
flaredownload.com/assets/hl-3bad9cb5.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 99x100, components 3
Size
5.0 kB (5019 bytes)
Hash
83f1103ff29df1e28c3c61e211537ef6
7feb6bda858351f528bab007ca18e61f981d4230
3bad9cb5dad161ae3550c9d79ff4eb4cf88a1d0855f6015785583aef1c058b51

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-3bad9cb5.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5019
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-139b"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sPSCqAOKDWDO1pOVeKDE0b5jmzXhl7qc262hWqPrk3gkoNS%2F2B1oiYGP%2BPdxlm2AL8PpjpMw3UIo4KpvlqA6xqILpMtcEqH1Cc3haAkl9%2FRMLSEZlRTpxuWONwUbLruzB2ou3ZsQUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf6056c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-500482c6.jpg

104.21.19.111

200 OK

5.0 kB

URL GET HTTP/3
flaredownload.com/assets/hl-500482c6.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.0 kB (5017 bytes)
Hash
e2cb71fddfa0f3dc422fc6f4d30c01fa
6732bfb9ee1af45d300fb678554d4e0aca31b59a
500482c6861c37402a904b9782234f3514646e908b02665036a215f130adf19c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-500482c6.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5017
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1399"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=crzWh5YZRLWG9p5s8rH0%2FdttNmX3EOG22gYykX8q%2FqMKx%2FGQblro2Sl228w%2BuWvw9AK%2FCSLmzimZ3gabcx7bAIsEe531bmZaBgeFDc0crNxkW9csuNYD2EOzcwgy%2F5rCWUFzK2oLHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf6456c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-2f19016e.jpg

104.21.19.111

200 OK

5.9 kB

URL GET HTTP/3
flaredownload.com/assets/hl-2f19016e.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x99, components 3
Size
5.9 kB (5918 bytes)
Hash
48dfe48f55f451e41a50fcb580f1050a
0de25219d5eb44fab0b65407fe3d247e2db86bc2
2f19016e16d896af118fec778d589b23218ee0f5fcbcf851b2678b2a2d904846

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-2f19016e.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5918
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-171e"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mWIUJHxvXs2MXUHkmZjy1%2Bd14PKZWO4SmqpbjeakQFtR2Hi4D%2BT86%2FyNlfhDoBcrwhLRv82i5G7z4QPG4%2BEj0cy5lVgN%2BMvtL189%2FquP0jH9S0Tq15dpggTKoyOVvpeEokI5xNMKpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf6c56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-9b718103.jpg

104.21.19.111

200 OK

6.6 kB

URL GET HTTP/3
flaredownload.com/assets/hl-9b718103.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.6 kB (6551 bytes)
Hash
27d31029d1f6ee8dec3da692c6c07539
7d857d388361b88b034e0cb62a17e30a3d7e7a55
9b718103b83411b0296a9be4fb1a1dfba8edf905ab9434173493dd3d1ff509ca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-9b718103.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6551
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1997"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pLDps92cUTY72N3AJwIr8Omlg6Tp6Q7wcWDyHMXrFGTTgndDxtc4S1YNrT6zoz7p%2BnyKWEXvjkPIGV95PkKVk3kmBpyaWp0TrEYyJk5ivS%2BcFJ2BnLoXIICtB7CFSQ6GhsmN0JlRSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf7056c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-5d331ea0.jpg

104.21.19.111

200 OK

4.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-5d331ea0.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.4 kB (4376 bytes)
Hash
c7ea482bf182b73d632a9c5c9702842c
8b2cd5fde05eedcf88c84e87b7df6722e5cce019
5d331ea0078b8cd125a48def950ca71d7a26cf1e884953bdd7591b8efe5190ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-5d331ea0.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4376
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1118"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SnYKOyBhFoZqIJEFuAowH8X41Yu%2FcbvbWjKpSm2jbQR6NM1zSubBKHuZgOAtopSLR1HkvjiedmKSO8jp%2B%2BYHrMmKDiqKxUkgWDQbiFjLVZwYrNJhQPiliYzs0TrSA2z%2FoDTBRHFQyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf6256c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-efaeb3c1.jpg

104.21.19.111

200 OK

5.7 kB

URL GET HTTP/3
flaredownload.com/assets/hl-efaeb3c1.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.7 kB (5720 bytes)
Hash
9861c9f002adfe3acc99b8e25eb02b80
7e5f3ae56c2139a5bed6ed08815e90a8e64d2c94
efaeb3c1c2845b277887f6ac7e1fa3494c45ec86d43a1a27dc8fc4cf93eb8d37

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-efaeb3c1.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5720
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1658"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=soi%2Bz5Jq8hd0JDTZw8Dgy6LjqFf8ys9MATJS%2BwRznPX83ZTRuWXc4j6jw7hxWsvoCgkwmhyT%2FMsAeScchNdbd%2FKr8UI195nPdypCTu0sp9ZQWCXK3X1kuZL7akQ6vH5aJ0rdWMjCQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf6956c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-d98910d4.css

104.21.19.111

200 OK

21 kB

URL GET HTTP/3
flaredownload.com/assets/hl-d98910d4.css
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (65329)
Size
21 kB (21315 bytes)
Hash
a1713c7a8fb53e78bbd5a1c76068791d
c15ca4f1e62bde996f9c72fb4a3e3f584b966741
cd7e4b31039bf939306ab3d38291f59e92069a24744e4b359b557aba0eb5b219

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-d98910d4.css HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=77791
access-control-allow-origin: *
etag: W/"6639e6e2-12fdf"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RBl2qGLnweKxzzWH2%2F%2BajZG2LAQIvdM9fsjiFRfMNEALKpj6NXkXh6rxX45wZ8vRw5cyv5RaN4UFosYxWg3hBFVCP8ejNzkMu4c%2BAa0VCB9uYARIaDI1z%2FA5O2yGf0w5ocNmHeKAsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9c96c8a56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-7e42c699.jpg

104.21.19.111

200 OK

4.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-7e42c699.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x99, components 3
Size
4.2 kB (4211 bytes)
Hash
396c3cb48c16115f89fdb5af4602fe58
07bf0f37404c1ac3a7c5301314b411604e05928b
7e42c6996ce43180b1071fb6f7241fa1d48dd87efae5e79bdcc8c507619e2987

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-7e42c699.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4211
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1073"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6LMrS8c37KKyfnqR5QJ9AVq%2BClwhRWlMcpfgXv0yhGtVbLLkg5s910SAca1OTsQJmo5wKi3w2UU6OiqnyPu83wUH37uYA3kXshdGjL9hhH2cF4d1FUOc6NgiW022D9A%2FiGYlvMDH0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf6656c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-5d7a8293.js

104.21.19.111

200 OK

7.8 kB

URL GET HTTP/3
flaredownload.com/assets/hl-5d7a8293.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (4793), with no line terminators
Size
7.8 kB (7793 bytes)
Hash
d2bc469eed16dc86100f035b1c5f966d
29e00d2e444fb3d19c26bd32942c2d6bc230c971
2dac1f01abbc36e492fad1b852eb6ef3138186d56b93504d6a86d3af15a93345

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-5d7a8293.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-016c1a2d.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=4794
access-control-allow-origin: *
etag: W/"6639e6e3-12ba"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gzkS168knr3sapuCvmTdyjBoHCx1DLfiNHVJ5ECgD3M08BiM18RR6dz0bZHiKd2QDbcuJUAAPRe9iZkp8kpLASzo5v%2FZMj2EfEQBIKYLAOBfuBVltGCr29mpD737fX2%2BvseFzRSY0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9c83a1056c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-8f5653b1.jpg

104.21.19.111

200 OK

5.0 kB

URL GET HTTP/3
flaredownload.com/assets/hl-8f5653b1.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.0 kB (4959 bytes)
Hash
f24618b856014d2085b574da4bb119de
66e778d9a31b5f0e0566b78dcff70a2de5ff5d36
8f5653b1a93522c8a89bd362dcd62b0f993590ba057c601e716180755080360a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-8f5653b1.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4959
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-135f"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O1cqMvpCVuVuvg1TNw%2FVGSPgvRWTfaoObjy7ei%2B5HXJ5lPReUZiTdKxhk5lB3H0jMn7xMHiuDRig%2FtRyan1qgRkX%2Bou00n5jUIQR5mg2zr66Hy%2BbFfwkSa%2FGPkzw1h3SWL0oXhnN8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf5b56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-c2c79144.svg

104.21.19.111

200 OK

6.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-c2c79144.svg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
SVG Scalable Vector Graphics image
Size
6.1 kB (6102 bytes)
Hash
5f03ecf12a91b3c3586c05ffbbf5a215
2cc6783cc011df6ca3f292c52bad02935a40e5b4
c2c79144308eb7fb8d2f4a6a6803199d0e2a82d42b651bad4d2efb6e360e0ca1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-c2c79144.svg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/svg+xml
last-modified: Tue, 07 May 2024 08:31:30 GMT
etag: W/"6639e6e2-494"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wDPf0Ip2qc%2Bq8tN%2BtoY8DTfJoDExOIq6YfD8eQKFmK98TQuqGXAITe1N2defHa5MlzK%2BsckSjIZr41%2F2gOVGIq%2FUuIcKFnAxfxFkRtsk%2B0Sp5zM9m4auoyrOu%2BHIrnG4NZS%2BSzpXww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9ce2e1456c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-b1786f57.jpg

104.21.19.111

200 OK

4.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-b1786f57.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 67x99, components 3
Size
4.2 kB (4169 bytes)
Hash
59623b8cce2c97066173f03200d6d17a
7f116f5e7c9b800f551204e3f45c108f429a41e1
b1786f57ed8a8cb56d360894fc8cffa8d27ea6c5035eb301cb912f7d1da721e5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-b1786f57.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4169
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1049"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ue2MoiJot5v4NkkXkv%2BFM2xCZw%2FGqzyI9077g%2FHAxvlz1PebniHRDrJxI83CZVBvOx77t4XZyJ8Lai3kReBT6QQUnElsavsYgUgZjBrcf9TyLTqq4Ev6jgezjucw3oOkbQpT5JTzLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cf0ffa56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-64f44577.jpg

104.21.19.111

200 OK

4.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-64f44577.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 67x99, components 3
Size
4.4 kB (4446 bytes)
Hash
bc352c741a77510a89baf5a4b93ce64a
5efd8be3ab1222f063f726a2cd163907664cdf92
64f445774a69927f9f45be6eef2d8d4662d27bea08a73d0929856fbe573e5071

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-64f44577.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4446
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-115e"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yq2AqorJ4N4Yx%2FC5l5rMJiwLOqErBGv%2FaDK%2BrsyMiObufGlwc5uWEndAH%2FbRwTEO7YP6SuY%2B%2Bs6NcY58BEHF1XZbOqmdk44G%2BQkMkYTQ4NYsRKK9m0Fw7xWcjUq67BJQClG59KJD2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cf080156c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-0a5145dd.jpg

104.21.19.111

200 OK

4.7 kB

URL GET HTTP/3
flaredownload.com/assets/hl-0a5145dd.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 67x99, components 3
Size
4.7 kB (4680 bytes)
Hash
373563ed76c411fa13805c4532b6ebcd
d0c3c861d87b22ee27de2815ff8e1383b9a8ff36
0a5145dd58fd4e3de8f0430feb3e1a522623e901b09036fdd636909a48b459e6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-0a5145dd.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4680
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1248"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5OnzTOaL6MMw1pSuQlR1SirmV1Hy7MNwOy10fgWHJWbNQnvFpKaYRWOe8mImdVX3upL%2Fo%2BfdLhQRR3lSIJQzdJh%2Fqmu3%2BQ9i%2FY4qwu5KPbZLguBAME9%2ByqZrzEw5rCdGkZqlX0k6kQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cf080456c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-e4687af3.jpg

104.21.19.111

200 OK

4.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-e4687af3.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 67x99, components 3
Size
4.1 kB (4132 bytes)
Hash
677017e19bfe10a8cad8faf955e41b85
782d3bc6865a1beb0a13f10141af7612779b9dc9
e4687af387c8e90f740b91d2379615f935b42eb0990c4065d7ba9961e3df5d5c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-e4687af3.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4132
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1024"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uwqgP%2BrbjFOU0%2FbsPWd%2FoYnNVJ8byRaNO4vEoxngFmm4kqF3TRyWCZ54LI1QfBPwnFFf11uZPPWya1rhKDE9jjDRSjnSqaEVYzW2UwsUFyfCXiuJNeTwCpeqGZq0vZh%2FCL%2FagihzfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cf0ffd56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-2f5d2ec1.jpg

104.21.19.111

200 OK

4.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-2f5d2ec1.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 67x99, components 3
Size
4.2 kB (4164 bytes)
Hash
d406ae2fe1b4d31f8bbe156e08a74373
7429da09a594ba7dfd3e788db145510395b8f714
2f5d2ec198c972a8424da89327cbe73f644fb13db9f3ee7249b5330a1deb31dc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-2f5d2ec1.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4164
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1044"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7iaQab4uDZxV7E%2Bo0ue2PnzeqUD4A4Q5spZ8om4nQKjEBgtIPymseb2FE8lJGw2YvvtCFxVJKoe%2FtGyOOZbo33S4sz%2F%2BBzOzo0QuHvW1zeXkU248dZZsP4juUBcK0Cbrl%2F7qI9bDaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cf386656c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-f830af1b.jpg

104.21.19.111

200 OK

4.8 kB

URL GET HTTP/3
flaredownload.com/assets/hl-f830af1b.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.8 kB (4831 bytes)
Hash
fb2ff6278258a3e9ddd84d934ba9c213
78c2867e47dea5f461022d2fda531ac83829b3b2
f830af1b018c176d20943e366d75586fa4ce36119591e0ddcaa7f2f7943717d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-f830af1b.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4831
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-12df"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fqzl7rpZ%2Bo9YYWVeIrtONP03ozxtVv%2FV6eK3gcfXrHBTfLRzuzLueu4ZsLPWWpfGsOKRtx%2BS5yNR6INfYkpTrNjtIFTenYArPOyz9ob9TjiQHOBdUvYNS34oNaY4Ff9R5vQ%2FPCYnGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf4c56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-ae8b4789.jpg

104.21.19.111

200 OK

5.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-ae8b4789.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 67x99, components 3
Size
5.1 kB (5071 bytes)
Hash
5f3ba5a2ab147c9aed197d1325672b59
d62ebc2f5f867b995bf72ea4f6134e7824dfad39
ae8b47899d2c69f0a995c42d82db268616d96afb08abdff88748ea7611b1f63f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-ae8b4789.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5071
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-13cf"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EKSf9ywLOx%2FF1fUkK6UJNXAJhIl4%2FZldtuHGBGmXffBVvuxP%2FBlhriC7Ymopup1G%2FvudiHNOrsqM5zFcOC6FTGFsg0l%2FL%2B6zCSh1J7%2Bv1oY3iXCqFx%2F4hPUUQ%2FUEeghpaNIkA16v9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cf285056c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-0cf1c3af.jpg

104.21.19.111

200 OK

4.5 kB

URL GET HTTP/3
flaredownload.com/assets/hl-0cf1c3af.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 67x95, components 3
Size
4.5 kB (4450 bytes)
Hash
e2b371ba445470694d1259b0f6340562
661bba049c0ea0c0235c595404a10630b6627374
0cf1c3afb1f3527139bd979a1acd447fdc65b98d962d9a7920d713961d0e570d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-0cf1c3af.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4450
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1162"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oZNUD8jD0dgvHHHeA5CLqpvisBIno04uoVD6EKRVjMryCqtM3QVSREINVybKNAsJy6C7DLaoOZDw2kr4RuJIllc2RBvYx3LoOtbvl6ed0HjEe8N1fs786ctwnJH%2B5hKr3NDe6gQ1Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cf080056c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-fbc15b4e.jpg

104.21.19.111

200 OK

5.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-fbc15b4e.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.2 kB (5154 bytes)
Hash
d897ef68e6713d96b0b969edfee987cc
ed3d59899db40e8e08e56318ed8a6c1944c574ff
fbc15b4e9bede32d35e3eb0c113f514577679c98f0515fed27e48c489e8bbaaa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-fbc15b4e.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5154
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1422"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o2YJA0IvHyZR2lPw7WM3lOIufhI65jFDWmpKOD0%2BA5kLmbVvqdxMZKmR3ZP9vJ%2Bx6qJGcAyMhJZ%2F6lYYpDjdpAhOqcwluoqkomnERKogr2%2B8mkNsec01R5rw0Xucg2THpE9dfe0qyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfc97b56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-bf641443.jpg

104.21.19.111

200 OK

4.6 kB

URL GET HTTP/3
flaredownload.com/assets/hl-bf641443.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.6 kB (4610 bytes)
Hash
49bb8f9d7b736a48b2a5a5aa8dacc6ff
35d49d704d8ff1acaa5549813d258c3b2a2423f6
bf641443b1eb608dc075ca0acd44f217ee2d4c0f1ecdaeb207231552e01f2472

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-bf641443.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4610
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1202"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4h5EDYkCYXUwX4CLdlVVAZ1itEd8AkwtrlMKhkRK0JQpfzNBPmimyLfr%2FrQAe5Pn7aYZp6a3xJBhYFXv6IY7yihWaGMVg1V15Y7P08axE2zQDUW01pAbZQUC3nHrASb98ZvKqiVBQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfc9a756c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-cdb9b222.jpg

104.21.19.111

200 OK

4.6 kB

URL GET HTTP/3
flaredownload.com/assets/hl-cdb9b222.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.6 kB (4619 bytes)
Hash
cce12c938f333895af4873de80926a1b
97aacea8378fccfe9c548efda87db2f7c915d35a
cdb9b222484965eec78d5d0efe525e1be3ec06a4018ce0b5f02535a77cc35ba5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-cdb9b222.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4619
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-120b"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gtSd%2FnrtDe3BdyDYwroxlzhIvjTiRVimBovGQNKKUVk9fmudJm3%2BY9InORIPM7zS5dtHgGbng%2FhmmNvSerJ84LiG4ZFVeOdveRZSmW9VzoN8bkyUsKpzBCQKnlp1pmnlFyYhueblQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfc98256c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-438b0e87.jpg

104.21.19.111

200 OK

7.0 kB

URL GET HTTP/3
flaredownload.com/assets/hl-438b0e87.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
7.0 kB (6955 bytes)
Hash
f48eae3874008f2d97490460b24058a1
13ea6a6d06386bfda676b9da4962c252d317a9a7
438b0e872ed67f013e3e47ff574c477c4abaee40c5bfbd2698072b21b8afde61

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-438b0e87.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6955
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1b2b"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fb51fvImASheboCr4Ske5QvkBiajA9KT8a%2BNc6rBX%2BpEN0c%2BhS1FXGPo5FsAN3N3obI7DGq%2FBizp6iHaDftIbHPIgEui%2FIj40NIKpR93LESXAo427YWzWAev%2FNzctEj%2BiMLZsQlnqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfc9ac56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-e7a5acab.jpg

104.21.19.111

200 OK

7.7 kB

URL GET HTTP/3
flaredownload.com/assets/hl-e7a5acab.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
7.7 kB (7658 bytes)
Hash
3d03e24d74dfb8c53ee3bb8ed34f13f3
0f00071c0ce236ede46fcf3cca3672d9691f68ad
e7a5acabe991f7fed865ad10402f3b0baa3efbd951284129fdbc7155870e002b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-e7a5acab.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 7658
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1dea"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oHtsH9jeaWjRO%2BoHWloHBhLknWP4kz3yw%2F9k8%2Fc0wyOsBRCVONF4D1Z6tfhMcJ9zBl75OCoIme3%2BYNeZpgQ7fDmrwWvx9MekWTiVWbQnT6Jp559OBbDZK0UnjYNKfEC6AuwdMbj5FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfc9b056c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-25c19777.jpg

104.21.19.111

200 OK

7.5 kB

URL GET HTTP/3
flaredownload.com/assets/hl-25c19777.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
7.5 kB (7494 bytes)
Hash
0c9d51d7195a42414976306517c26d7a
aa27dd027dd029646722a579f7e09a9a950d54fd
25c1977748b18c759e63e941c7db5b1528cbb05c097b05fecb0384e8acdecc87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-25c19777.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 7494
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1d46"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=riuLkm%2FNVeZA%2Bvt%2F1exi0jaefRBZqm0RwhfblBJyRa1%2B5apxY1pT4VwrzSg0zO8uotGKJ5E2qwh1SFlkAeZb5A2drf5EnckEersBz0tbMh527MXXE1MdUZiZ3l0DBHfL%2FuJVLRW1%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfc99656c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-cf9570e9.jpg

104.21.19.111

200 OK

5.7 kB

URL GET HTTP/3
flaredownload.com/assets/hl-cf9570e9.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.7 kB (5681 bytes)
Hash
ce485eb33352701cbad9bab3eb2796c0
e6e05af276a0c0f6eee668e8cd7086fd17d75cc1
cf9570e9865b6810d2cfb76afee93661e85582e5baee06584604bf596c537a11

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-cf9570e9.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5681
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1631"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MF2zD%2Bw3UWODFJbiVAGNDtOTMx4JULLG%2BWUaA1fmL%2BWO0RcperdPDKYPfJpHVRFHQ06GzOBRUNvqWvPcsUe3PTKHRN8zGbPMFuRcLi53pZaSg0kN%2Bj1HrpyymS68dN98cgba%2BmJzqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfe9d756c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-c45b3240.jpg

104.21.19.111

200 OK

6.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-c45b3240.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.1 kB (6121 bytes)
Hash
cd23609695ca4debaed53b895915d1f9
adac3c588b5c008eb14ae157bc7540a7380eb18b
c45b3240b323c04aea50837e2ea59673d7b1cee6fbc4a0637cd2b26048b1edc9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-c45b3240.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6121
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-17e9"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WmTySGvg2Dc9KJzDWk9TdSAtF1ifoo7Li%2BA%2BnrzBynVW2gf%2FU4hud5uXMC8Kbf485QFMQQY%2F6cJzTtbgxBbBBTb%2BhosNIUk4HM0jdVDXLGTUIfHz%2F3dD%2BLL9qrb7q1bV28CAfUJMjQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfd9cb56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-2850432f.jpg

104.21.19.111

200 OK

7.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-2850432f.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
7.4 kB (7369 bytes)
Hash
ca64e583ca7fa5240fcd7438799679dd
a02ba5e4ce46ea0e389bf5cfb6540b7b7c2466d6
2850432fdf38c09b8915d4b34874cc707e3516d6a54827a8af43ae0914a249fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-2850432f.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 7369
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1cc9"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cKL%2FZmeeWTMWaYLl1n5gKNATwriYQrh%2F%2FuSz9bFGGZQDbEsaiMTiSLeuyNjSGMOeZqnlXoKJWVMPkI1xc4j0ZcmY7PYp0%2BdB6o1XKk7QeZeVRsKICv9cpvH4%2FL%2FZwtDL%2F2HaTjQV%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfd9cc56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-26fa6524.jpg

104.21.19.111

200 OK

5.8 kB

URL GET HTTP/3
flaredownload.com/assets/hl-26fa6524.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.8 kB (5831 bytes)
Hash
435ab313c0a511c57290fca5a90291b5
8fb2b71f6b171bef60004225db15106767ccb5de
26fa65240f08e3df8306587a5c5be43fcba48434fb7e25493e4c27b7a0f58f20

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-26fa6524.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5831
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-16c7"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bpSMfpgWtLI7M5scmE00bCLBSto8JxHljrsqwFWPop8j2rTAmHNzTkSg4FvGUSqdTG%2BAchB49vlqlo8Vohz1WMdD01FT3wjFTxTiujMgK9LwRMwmIFXPnd9xoxtyke4d8AwqRSLDTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfc9a356c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-870305ab.jpg

104.21.19.111

200 OK

6.5 kB

URL GET HTTP/3
flaredownload.com/assets/hl-870305ab.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.5 kB (6485 bytes)
Hash
d386dd6fd85973cc7ef286ac3d51be56
3e7d2db48bcc8f1c2869cf25d9949b13f0d2b5b1
870305ab39880504044245047a65bbb6a73cbca9053fac7e74f55f139bf3d2d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-870305ab.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6485
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1955"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TatCekqJeXe2mHdG9gHcU%2BoKMsBpXLGdkLEb9z9CEVBzNQaKQ%2BdYKOUDElKJ2hQQfMA%2BIrS%2BS1U1Dw%2Bt24z6IaOEE20Q1ooLYPmGyUQ8E9D900ztdHlBXuj1dDdT%2BsSRFIX5AEWeuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cff9f156c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-5ebc937d.jpg

104.21.19.111

200 OK

7.3 kB

URL GET HTTP/3
flaredownload.com/assets/hl-5ebc937d.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
7.3 kB (7279 bytes)
Hash
f79fe6e201692102c726eff69fc295b9
3ed5400cde726b55188952ea7f6380f3b783ea5d
5ebc937de094347d057513f67f54377a88c05d1ae3fc220023d2b7e59bcf244a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-5ebc937d.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 7279
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1c6f"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v88iZ%2FM2NYxWxFvqbjypw1qggXu7G%2BlX2JJ0FvlD64qdrv%2FC5ur%2BRqs%2BLrrkIzHvR%2FJL%2BSfMTQc30tv03TTJ4EUULU8yD8FUibZ28gVIjpdlRgtQvkW9KNKnnXrjG7AnHCkx%2FF1xIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfe9d256c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-c8d00661.jpg

104.21.19.111

200 OK

7.0 kB

URL GET HTTP/3
flaredownload.com/assets/hl-c8d00661.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
7.0 kB (7040 bytes)
Hash
93dd7f65da920fdff306840af91f98e0
7fe40099b5326fd638f094b4bec6746b0a7b1c7f
c8d0066137cc0fb58a73e216f6df27186ea72fb649c5937f3c914c91fb131c76

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-c8d00661.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 7040
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1b80"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=09qyzlxjraUFmIzk9%2FWWOfdwKb3S6QjRHOPxNkdMT1FAhiRTHbXqGfVs8ShGt%2F9Vdj95JaDAEkdgUF%2B%2FZ%2FgC9bLyytYcE96YL3S2Pd0sSie%2F2dhEa3RF%2FV1ERJJrU6tKo9ufwkJh7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfc99f56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-0b1f66b1.jpg

104.21.19.111

200 OK

6.0 kB

URL GET HTTP/3
flaredownload.com/assets/hl-0b1f66b1.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.0 kB (6009 bytes)
Hash
f08e7bd77e3ed0d9fc2fd9eba92a646c
ae116f92f563e07c9137f7acc1b99c185e5c5571
0b1f66b155fa96b7087bb91c33cd1246fabbadae13ded7402a4c88798b74e72c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-0b1f66b1.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6009
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1779"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fKuu99%2BdHAhWt015JnM8QgsBfIB%2Bt9efPJ6kPzspOLTz86q4nvPMrvAgwQZsZlX51a1FsDj2B%2BNkhWVKzyOb82BxIy6HokKX3Qd%2Bfw77xAgmjt9LGl8W3jmz9EhEHYsYBpGwsQQzpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cff9fa56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-8ff9c8ad.jpg

104.21.19.111

200 OK

4.9 kB

URL GET HTTP/3
flaredownload.com/assets/hl-8ff9c8ad.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.9 kB (4873 bytes)
Hash
e68f30458cc2b7959e764bfb48ef25e2
75e4ff4689dc6c4dcaf04d21a953add8a6f3f5f2
8ff9c8ad740dedec98f5ed03a10430342fc81b27a5ac73f9c6f7d1b132c61dfd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-8ff9c8ad.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4873
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1309"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pjbx60tUC1Z617nbxlTLnceorrII65lMx6ZMNcj38zPR1g5PUkiUkWLfG7VyAdcHKcIl9MPL62V7%2BdqYIqDjrwUUWKqJQrqEL%2B6O5BKXkY%2FpvQtn6tkmBivjZWO%2FQ1CHz9s78aLFaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfd9c856c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-14fc9cac.jpg

104.21.19.111

200 OK

4.8 kB

URL GET HTTP/3
flaredownload.com/assets/hl-14fc9cac.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.8 kB (4779 bytes)
Hash
f08ecfb39ff8fe02ff4f3ca40256dc01
791303e5499dde7a1ad387207b2a5c606dd1e084
14fc9cac86fcfd20d1fbf0d2f40d5f56411b97467471fbe7483f76a2dabcc2fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-14fc9cac.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4779
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-12ab"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ec8AsRRBt2wqxBjenyg8tr6O%2BytWJT%2BblD8pIFjc2JJAmYJQd8qnRMCxyO1KztIRloiRLeKhpmDKi0fMMC24De2Ry%2FMj6hD7atmXc6XkHV2MZsnrkImG%2FpKRPF2OLlAgxS58Nxrkpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfe9ef56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-d9f3785a.jpg

104.21.19.111

200 OK

6.7 kB

URL GET HTTP/3
flaredownload.com/assets/hl-d9f3785a.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.7 kB (6705 bytes)
Hash
a6063406a2d0455787299408eb03cac6
14d3b5a3ff0259dc207ce1a2a493def94a71510f
d9f3785ac1762a5fdd9bcd5d590460526f76987804cb392bd63c83080f9d6cac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-d9f3785a.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6705
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1a31"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zEgc1%2Bj6eUxsHDzrDyxfCxgE557SI6WWF4awsI%2FBFB1946MSNH2v7LtqQ6AvqMkWZFrkUXse5rI04IB2Dr%2B90zmqDn67HGA5qnQ9xu0betNmM6H8pjveHLcEIkZvdzCVh7k2NAfhKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cff9f556c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-8b814198.jpg

104.21.19.111

200 OK

6.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-8b814198.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.4 kB (6356 bytes)
Hash
e00f9bcb3309bf9e65b25982e9f0b0a5
edd043bfdc7fea4fba16c2eeff3e7d1554ebc73d
8b814198ae86becc93580fca4958b17b69903ad7c10600b74c74f9d87b7dc1ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-8b814198.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6356
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-18d4"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=48Uy7MngV1NUSZlD3oTO40Yj0q8d065rmbnyF%2FK8wVswX0tcOHt3%2FRgh93p4fo%2FljyeN4e3fFPpZtEHl2ydiV%2F8Wu4ryNYVgKhAEkqKo5EBD9erjEsRA3RMhlqOhH2uEilZ%2BrSW8dA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cffa0b56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-ec2703b8.jpg

104.21.19.111

200 OK

4.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-ec2703b8.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.4 kB (4413 bytes)
Hash
f3a6b65fb8e97047b6cf9e2c66be0d65
522db3eccb01e74b4df4ef6eab840ecd24ce1fd1
ec2703b82982863e02bfe56f700bd284fd2c35feb316d7d13a20fb06ac8de5fb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-ec2703b8.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4413
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-113d"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9rkR%2B1J9qVVh5hurEjFItdlypcI6zkir2fmmgT2Cyn%2FgBHuLnWQK%2FQ1KLQzdaJ0%2Bh98brn0l1tPL9xleWlKJ1B3ELRKWyxF9%2Bt7MA%2B0XeF6fxV5P8zP%2B40em%2Bh7pG8%2BEZO1CQdAZtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d00a1956c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-fad2e4a9.jpg

104.21.19.111

200 OK

5.9 kB

URL GET HTTP/3
flaredownload.com/assets/hl-fad2e4a9.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.9 kB (5936 bytes)
Hash
1cc9ef16ddae5dd613ac3523e42184bf
601d2366274803866a2db7529546053c7f2c0a8d
fad2e4a9b459fd3341da939f664e61aa0c832a319d756ba1a657fd746f9382d8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-fad2e4a9.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5936
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1730"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=svK1gZbHIUi4T%2BiI%2F83z%2BdCHATsaZiQ7aQPv%2F6Wn%2BWdxrbYnvTgZWp3uEwbJJR1IW7Hk9BKB2mPOqlzMJ3TOA7c%2Fxjew8UmBBmo%2BDvhTfy8YwNZHZwrMA0FAfzQOb9HWK4PJcbPVJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfe9ea56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-62f8e35f.jpg

104.21.19.111

200 OK

5.6 kB

URL GET HTTP/3
flaredownload.com/assets/hl-62f8e35f.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.6 kB (5641 bytes)
Hash
a7b40ba089119757a1db2c3bcac5cf98
6f63c374b7bc86c43d94681fa1737c9f6a9386b1
62f8e35f665ca88c7bd9dbc5351915c8f47f57fa7f3c2007ff9514887a9c1dd7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-62f8e35f.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5641
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1609"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BdzSt0OkK1egguDxAayErFWkw4BsNboQsi1UpWBZscfHJZ1vzwwfiHU62cA0zshGhIrPJcWL8aBQRlT3gHJxstcnitFFxqU99lE457UNj4nm%2BqpQ6BBAnSPxZeY%2F%2BbaGd8kp89GfWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfe9e656c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-3c56faf8.jpg

104.21.19.111

200 OK

5.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-3c56faf8.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.2 kB (5195 bytes)
Hash
b04d64e01e86a9f81ac2861355e40017
703883de5ce1f22adca1f048a59c9c8e5ae1bb59
3c56faf81b4ecc650cca230b13b6b4f84fd19bf0f4a0f04dd0ea6c9c80f5c811

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-3c56faf8.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5195
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-144b"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PASqksZfTc2BH9pnHCTgxh1RGJB5uWTRNvYhCdg%2FjzApHO1jadC9tSfRHwVmHYx4KQzE5VdxClYPD03eoHerAmR1RgjbIswAZcORypNdWKha8Nb8gxYgdvuGKMSDuFiz%2FgTnenXV5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d00a1f56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-c8129eb9.jpg

104.21.19.111

200 OK

6.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-c8129eb9.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.2 kB (6153 bytes)
Hash
31f2e64adc9245db43d186c7f06365c7
9f2093d8abe29f0e0328aeda9f81e400ac12b822
c8129eb9e89a72bad84cca9d198473ac6960ea96d3408fbe4a691e7708a6b1f7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-c8129eb9.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6153
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1809"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ypfsj8jvAYKQ4n20EZC2lnByfXaQdphDHeDvnLvA489Rei4YbUKpGjLPCTYU%2FkXvCQton%2FquyASlTt9VuYUYhjpEiV2HrQZxfjCsL2py%2FAEmRnji9qndQc%2BIz6X7GgDudZwDYkMe%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d00a1c56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-cc63f3ef.jpg

104.21.19.111

200 OK

5.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-cc63f3ef.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.4 kB (5420 bytes)
Hash
1e38080635d727f9791910413aee40f0
fe01b07ff8704f9b59629d971581ec88cbc2343e
cc63f3efe920924e1fbabfa60d1cef616d9a974129f01f9b9f22fa425c22132a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-cc63f3ef.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5420
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-152c"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=khHznETQThDihRf8zys0x9f9gDPb3idq038mCqMMDS8m9Q%2B9qxFrceVw0VmtJe%2Fof%2FyKKMNLMzQBWhe2gsLUshyQvghp9ms7yrUHHSSsOH6ivNjJdxO%2B5MrkSI%2FcpVh%2F9q%2Bt5yIA%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cff9f756c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-7b343ce0.jpg

104.21.19.111

200 OK

6.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-7b343ce0.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.2 kB (6152 bytes)
Hash
c5e4be04be5a8297dca492f7a9459bf5
01ce19b1cea13934b4ff7cc08439949a0a9a7347
7b343ce036f9c4ac4e836b297ca7ac3ec3f63283f3bfc28bae2c46d69a50be0d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-7b343ce0.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6152
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1808"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pGVKONNCvHfQt0r%2FPmPLq85GrwEW59j6J8ESfOA0SFeBwg03eQT8Ik8rK47Y580Q4asqUfzMb2hNOGhvuLsvqqIVS6tJSyN7PpktpdtGZNys4ivT5zZIhFjlE0UYI1O7r6%2BOdEJtDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d00a2156c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-d9e47852.jpg

104.21.19.111

200 OK

5.0 kB

URL GET HTTP/3
flaredownload.com/assets/hl-d9e47852.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.0 kB (5036 bytes)
Hash
ca4206c3881eb912c47d24504997990a
69576ae0bb7bbfb61b579a3d83b50db4171020d8
d9e478520b4f694661549c0b3842da31f4df33799845ff6c47317b78d2062cf0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-d9e47852.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5036
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-13ac"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wvmn%2Bg%2BWl1soEID7PXGuS7%2B5Jj3YlSTrJPK80iuPmXLx9jPQQtUZxqWWzPfgGfqXZ5KM9wN5XXSGlNlAbauJq6pTFvQxy1OjM1MkoK9HF%2FTDH93mwigP%2FE98XrJ23gRbJZynmkMk8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d00a2a56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-e90a3d9b.jpg

104.21.19.111

200 OK

6.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-e90a3d9b.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.1 kB (6082 bytes)
Hash
8b447b0329ebd3d39ff15587f84d0e01
822c4da573e14fb148d4b7c7a89df0ba5f14c021
e90a3d9bfea952fac3e4e9a7c27c58be14c86e200c61397ced0cd568c5fb195f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-e90a3d9b.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6082
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-17c2"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6UDPtUE2G1RoQYPVLUYq5BklVYvjsUmcmzU9rtjlCy5TAlv7qbb3syZ1YbuocqHif9vVXF%2FSQd1u%2Fe9xUsjN6DJvRfwRXr9My4pt6jCdeL941xpVz4FnxNMI7O%2BbK3FGIfIIg5Kq9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cffa1156c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-02bd7563.jpg

104.21.19.111

200 OK

6.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-02bd7563.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.2 kB (6220 bytes)
Hash
2e42a4dc716ae16abfd19986944d86af
8f66073278429e09ff989d09d0fa01d7db734461
02bd7563b2d35a1704b88cba87aab926ab0f1d636f25a7340acc01c90f86368f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-02bd7563.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6220
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-184c"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sLaB453sm5KjmdulQxFNBOvtfXv7IzyJmBPAd1Vi1rJZUdDIcnzru9X2zp%2Fjlo31y17uCok%2FtRXMvpa446w9oSFwlRQywH8RiyIcla8yU2ATbKub9OkJqR4%2F0lQ2osGGM2bI%2BUkTrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cffa0556c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-dab37740.jpg

104.21.19.111

200 OK

4.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-dab37740.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.1 kB (4116 bytes)
Hash
6bea7a0d87e8fb6bfedaf90033466514
b2a6e369d526dd63fb9edcc19700d7a67a65b853
dab3774003ab113ada11f19cc31c9dd56305cc5c57d430d7d992e7c97c9b56b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-dab37740.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4116
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1014"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hZyKW2OmuOGD2fiBs8IVSV6rGsWIF1oBFNAwaU6lsS4S5J0buPV1CUTXOA%2FsZ62fm1lr77P5EKOvAQ%2BmJppNaIGQxRPqpefeoKhLGyfKAAEYIkXf4lkv6QWVPF3QV%2BRHkkvIOcX1fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d00a3556c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-391b6e28.jpg

104.21.19.111

200 OK

6.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-391b6e28.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.2 kB (6154 bytes)
Hash
772faebd7bccfd88829573fc87f49e3e
0ed878367c5d06164be93c98adaa618700f3847a
391b6e289af831b6954754a79f8b46b371d408fe11e22b22d5937d3b7b903c25

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-391b6e28.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6154
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-180a"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xDKbeBRffMBCB40vKGRWvJfAs01KTNch%2FZxlJPzERZ2HoL%2Bp6j%2BLPBrF63sqsIE7UTxOmq4KoUOLWHf77jLKa8wd7aQ2pU6xuIMjXuGQAk0644vO2YUBzxeNSyygNVe0MLeBq6gaSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cfe9df56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-2c25fc83.jpg

104.21.19.111

200 OK

7.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-2c25fc83.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
7.2 kB (7201 bytes)
Hash
9d4156baa9ddf47ee602d55125721a50
65aae6f6105e9e7cca6ec7a0d544dfff575aa179
2c25fc8395271af3ea77f0f6103330dce080fe5222579979074467a1bb0b36b7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-2c25fc83.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 7201
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1c21"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NyogOLBa2UCNrRyEDRkOwtVdsFQ0Dyd0UvY3Ghy5CTr9TpCCKo6EcLburIAKqU6977aRG0TNHaNmD0RbXEX%2FKvrYgAdNqgkRgJZTKoK37hRuEU8akTVHp%2BecTegmD9NbG3vg8rlC2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d01a3c56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-df71e98f.js

104.21.19.111

200 OK

7.3 kB

URL GET HTTP/3
flaredownload.com/assets/hl-df71e98f.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (915), with no line terminators
Size
7.3 kB (7318 bytes)
Hash
60a5eed01c0dddc43d1759559fd28060
1e925a2e069a52ff67cd312e1fe8fa8f4f6d2fef
ac592a8b360e2139a861144c2c666bf0af96809e06e392171549d3ad9c0f3e06

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-df71e98f.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=916
access-control-allow-origin: *
etag: W/"6639e6e3-394"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6A4NNQWi1Gkx5oNLe3D227U%2FeDbVMd2LVsv4olRomX82iwFrKM8nupZKBc90qQ6XuuUQRvOUL0tET%2BRR%2FTF3m1oyI8DovAMucEzIoJBipZD12z%2BnHBpaD6GB4xKaoNrPMILqndoxKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9cbd96656c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-5a53857a.jpg

104.21.19.111

200 OK

6.0 kB

URL GET HTTP/3
flaredownload.com/assets/hl-5a53857a.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
6.0 kB (6023 bytes)
Hash
84350f58ab3bad6db7cb39300c69c736
ea3520625f2ed605cff9947fe95eb1b6b7211d5a
5a53857a943de01eda6b3cd3d1f367c775240bd840f3ac817e5aa04dae76bfa3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-5a53857a.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6023
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1787"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QwsIPLCnveb34ldMC26JECIIM5Y%2FGj2pRQ%2BIyOZLLK6f5uUQWTRaK%2BKY7RscUpCtG%2BNmcNpTxnTKO4xVRsXr%2FsgmqpFcXPmtsnvSyGe%2Bf%2BjB6wDrb8ax0JNGqW6P3Z7PEyTSY6Ofag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d01a4f56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-b9289831.jpg

104.21.19.111

200 OK

4.9 kB

URL GET HTTP/3
flaredownload.com/assets/hl-b9289831.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
4.9 kB (4900 bytes)
Hash
3960d56669fb87f5edccff58cb9f47bd
cc3e3da167a630f884c6474a27792ef356a4d190
b928983196e789006969742873f64ab6d369781976d49c77b7d0ed0b4df53180

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-b9289831.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4900
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1324"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mcNikiJJyCiahHB%2F%2FnhFtQRhh3WWflZI4RSnNOhQ%2F3mSU2dOM8On%2B%2B9I0%2F%2FbuRFJwMjxDeNm2GYOtcuGEAAihcBDaGTqtT4vLMjNp94cEun3aSoCFfi%2Bgley%2BcGENQ0nVkKQlmSteg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d02a5f56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-a1570d6e.jpg

104.21.19.111

200 OK

7.7 kB

URL GET HTTP/3
flaredownload.com/assets/hl-a1570d6e.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
7.7 kB (7680 bytes)
Hash
f0cf6c2f636e7c4d7cde127604300952
34bddd397f9d8c99fa718b59d9410858a67ed561
a1570d6ea0e8b5665b9913d0be831e1a1412a8f2983b5447386711cb863ba3bb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-a1570d6e.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 7680
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1e00"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sM%2BWub%2FzyJRBlXiS%2FBf52ep99orf7IvpraIN8wVp8ibKJiKNWAOnrkVLRSPvZ0tcgLJEZ1Egl1FaoCEhxmkT58hUcucecVcrodn2bzp8AMQHuKrTjvPRaoE2Wy1Ig36YBI57i2aT5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d01a4556c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-de833af9.js

104.21.19.111

200 OK

6.9 kB

URL GET HTTP/3
flaredownload.com/assets/hl-de833af9.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JavaScript source, ASCII text, with very long lines (690), with no line terminators
Size
6.9 kB (6905 bytes)
Hash
07f4201d4f772dc3825f3399bb217552
e70c0af48037b02ab9ea515952b889f9eb7bcdb1
5103bcdb5637c56d4a70564479cef8e07ec2d3f00620b428cdb36c28c430d906

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-de833af9.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=691
access-control-allow-origin: *
etag: W/"6639e6e3-2b3"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d3mVKlAnuASvtCuisUHgZ0W5r4zgrg74eN9nIdDZs8A7LjD2expFpdR9MfDOf%2FkIspGOIxNftZtYpNX%2BCXLwW1JMaqv0smQZESUehuajCjE%2BAuJRg%2FcP%2FHHkZNvu2YUgwaJUws1%2Bmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9c83a0f56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-b598c105.js

104.21.19.111

200 OK

8.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-b598c105.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (561), with no line terminators
Size
8.1 kB (8063 bytes)
Hash
572a8d2fc6e9403a186c47bc4299d87a
8885cc21801bcca938fb2ed9fea47fca6c27a56a
aafbc4631c3ac6344630f7a8b26797f44c3619ec734d9081f5d6c3232d13c834

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-b598c105.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=562
access-control-allow-origin: *
etag: W/"6639e6e3-232"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XzExy%2BymlhGJXzhanlEc5mxSXfY6525VqgBb%2BJcDbQQ4nSfW7WFMxWF6lb3hoQBNbUuXUPFhAaIsVGUbBBCNyLukBTduquivBSng8iOin2FMASKA%2B9nQgazSngmFVI5UAme0%2Bbqm%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9cbc95e56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-6b23ff10.jpg

104.21.19.111

200 OK

4.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-6b23ff10.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
4.4 kB (4427 bytes)
Hash
94217a58ddcf6c3992a8c34273eac2dc
f7c8437638f13daece396f825924f404ab874789
6b23ff102b246939dc6ba804a48444caee90605739dcd8c843487733785554c5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-6b23ff10.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4427
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-114b"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0KGbo1GDGf6lK3AuBExFFhS54nRBl9cVjmKQOkadDJ0jA4DweNbV26Qf03%2F%2BkG9f7wIeVsPreLvgf1WEnm6qLr7gwl%2Bte67DybQ1Em7RxmuB0z8bnczK%2B%2Byrek6uyeT5CSkOhRBhqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d01a4756c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-c011bc0e.jpg

104.21.19.111

200 OK

5.9 kB

URL GET HTTP/3
flaredownload.com/assets/hl-c011bc0e.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
5.9 kB (5921 bytes)
Hash
9152a3d6a5bd556a55ab2e0a1353a670
8912c898a34cd1d8486c9d48e987845234079842
c011bc0e2f20567eacb2e68a753297658cec11ebee476b8de98672b374e2c608

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-c011bc0e.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5921
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1721"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9nFy56g4ZHiIAqGmvn0%2BTGmLGJIN5Df8wXzPX%2F1RgI%2BgZiOM3S1e10Pk0pyZxZke8S9r%2BgPKUpgau2ykev75AOSOTm810NYQZU4xmuRgd6LYvH8BWeR9LRjg7wEHK4Cg0zYYYmk4ZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d02a6256c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-9e776df8.jpg

104.21.19.111

200 OK

6.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-9e776df8.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
6.2 kB (6164 bytes)
Hash
a2c0d53ea1e55c2049fa723fe4e07515
7c00b480ae7d8a439b61142def72010a238aa677
9e776df88bd67bbc1b2e23e31eea5cc4739d3fa06311c497959acb2de0ea4e05

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-9e776df8.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6164
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1814"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7FgTnz5rotXvoyIqdEKH2a0F27wUme6%2Flg3LWL4j1Is9%2FB5uxiIYxm8GiNuLbBysOk87D8kT7fOmiCDOiJnQ%2BG3MZXOuNyBkNCcadRDKpvx0HYn1pj9d4tdpP8g0K%2FIt7foxpcZVuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d03a7156c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-adc38144.svg

104.21.19.111

200 OK

5.0 kB

URL GET HTTP/3
flaredownload.com/assets/hl-adc38144.svg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
SVG Scalable Vector Graphics image
Size
5.0 kB (4952 bytes)
Hash
dcea7937086bd21e7ab2a1d22e6c4519
d6e3175e027d3b709dfaf3c4b2458acb0c7e5b5a
adc3814475eb5353c8fdf4db09a66064e7fb321403442b7986f757fad67200e8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-adc38144.svg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/svg+xml
last-modified: Tue, 07 May 2024 08:31:30 GMT
etag: W/"6639e6e2-416"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QxB4EFybv7Xn8wJ%2BZRkS%2FxjZXdoO2w%2B8zH47b5Jutl7PM0rSbel4ZJAerZZhLSxmVhMQv2Iu%2FSDQXfu%2BcCwcin%2FkA7%2F43%2FMPuQDN4komSzlC3%2FT7eD0nHxbMv0CdYLiqJulIPdsI3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9ce2df956c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-f5a3d489.jpg

104.21.19.111

200 OK

4.3 kB

URL GET HTTP/3
flaredownload.com/assets/hl-f5a3d489.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
4.3 kB (4299 bytes)
Hash
1e61c4149093b018ddf3b735ce4a77d0
d3e0bcd8005ec5028ab8784399830b6e3806bc4e
f5a3d48931674c1966ac1f762bc6260a06a654de1b3aff09a50fe3fe3cff1aa5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-f5a3d489.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4299
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-10cb"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HgQLg52%2F12PzPt0%2Btn9n1rhYhWlffUTircQCv%2FDCBslVmSEQWttX5NVBhq%2FO6tXLWddJuXR0S9R3xiAaqJhMUR98%2FPx9ms3bROd3Xut8S2A%2F2GLJ5AOwmm1NE3r4d17fhvd1IAQKYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d01a4d56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-f26c291c.jpg

104.21.19.111

200 OK

5.7 kB

URL GET HTTP/3
flaredownload.com/assets/hl-f26c291c.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
5.7 kB (5729 bytes)
Hash
bb0406a0e191925b7a9e480865ec5df0
8ccc809ca2ea98689ad1705c08f7eaa488cb8d0d
f26c291c1c8a21c4635e447370c8c51c09468a8241c9e8c01d18e7ef5e1bdccf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-f26c291c.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5729
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1661"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nRnzWSiNMiSCYe8FtWzgEi1X40b2xtzfy3LQ5%2BVVXIUhOFMdTNmIOhEZs4VSxScljzR%2Frd3qrqGkzaT%2FvRPoncZkXSi6Xn1j8ENpqGvhzjq2ljkU67L69XI23Iv5%2FFWQ8gX5%2BkyNQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d03a6e56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-984d839d.jpg

104.21.19.111

200 OK

5.5 kB

URL GET HTTP/3
flaredownload.com/assets/hl-984d839d.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
5.5 kB (5456 bytes)
Hash
3012dcba37745401d09147db6cbcd777
36b5ca879c75672bd025a6558020240e715c76fc
984d839d1e13b41dbd0c492230626e2704cdf1a516be21b52204ef9e40d98950

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-984d839d.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5456
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1550"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yO7m5tDETI4dY1wNaZdHuZVC2unGWBKOvg3ra68M1TbLKX5tQ3AqVNZ%2FjTT3SiZeoSbq9cXEfanrRY6tojznpiQ%2BFWlzgZdOVb1HRCVuHm6jxDipcuppAKiTTtqZ%2B06mRCrq9OB6eQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d03a7c56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-37e9bff5.jpg

104.21.19.111

200 OK

4.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-37e9bff5.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
4.2 kB (4204 bytes)
Hash
eeb698ed2d35434e76ae5d6bf815d9e3
6e572061b42144341dd3cb296406b2b9c595a6b9
37e9bff56fb7526f8dc980ce45098eb6bfd780f5d4e6e0c5804061520716d75b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-37e9bff5.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4204
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-106c"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SGKHJ%2F6KUUoAyJ1e4Lqa%2Bh70Yt6GMEbALJ3EtppQRKYvMqrXoJlNptLH40sRWx2AildW%2B9OYq3wHj7XsL1x0oeWpEoWDJrOqTNbOXJWsAXkmKG5FrrrxUoB0y5fBCZTtw0pt6L8V3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d01a5256c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-c5bc3444.jpg

104.21.19.111

200 OK

5.3 kB

URL GET HTTP/3
flaredownload.com/assets/hl-c5bc3444.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
5.3 kB (5263 bytes)
Hash
6d47e5d54e98c599a2266f903ce34b2a
66fb045a35d2c04b8272b79be9db8a95491b8137
c5bc3444235431b6a432780a7bd3d52c725d90faa01672c87449aabf4ffcc867

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-c5bc3444.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5263
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-148f"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=57Ar4WYn4kC%2FVFbn61acJ%2Ffxsw%2F8wClkc5w83gwnROTZrisoYsvs1sMoImMOACSOQO2vwEuv%2BHL4ZPJDcecZT%2BvCLYGQtbZCVy8BYThRE8Vb1B82i2JJxrxccudfyqPwDLqPSVGYkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d03a7b56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-c04c13fc.jpg

104.21.19.111

200 OK

6.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-c04c13fc.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
6.2 kB (6169 bytes)
Hash
6c58512d21588155a925ee4a56311cf9
807b08cc2852b2324601c98cc1e0a990863c38da
c04c13fcd5acb7c305509282d031e56e875702a50c0fed030a2df832d4af5e23

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-c04c13fc.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6169
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1819"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zgPF7ETYfoqBQejMU2%2FKAvX2zXsuq4ohOfcHsy8HPhBH3O9AbR%2F9ip0kWBw0HZ33q3HO7bNMjoZa8esYerYGy8hYHQy%2FVzf8p6FJwwvSOhfhfyoglq0dqwge3TBTFpAnXGH1p7sdig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d04aa556c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-9de71990.jpg

104.21.19.111

200 OK

5.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-9de71990.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
5.2 kB (5229 bytes)
Hash
89b16832b77af5e6142c26e62834aa81
b3f2790352ba05e2f6e71029690685660a91c5c1
9de71990b5b656ac2b6e11e1cffffb17e0c7a0606cab7ce778349dc6ddd583a2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-9de71990.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5229
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-146d"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8PC%2F%2B2VStxH4PcmOMveTZE6ipsQSbUftv9L5aPlF%2BJv7KSnmE6zC%2B7o0fqgOBthk206vWNjdDg9bCsGsZs14FoToRCyf6%2FHD258zo%2Bqb0nY819GRYyquP%2FaL8G41vOrg9sOj91yB0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d04a9956c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-7beb9d51.jpg

104.21.19.111

200 OK

7.6 kB

URL GET HTTP/3
flaredownload.com/assets/hl-7beb9d51.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
7.6 kB (7590 bytes)
Hash
f268da427e955fb010fc5acb800ae79f
3e9bd49066cc1c8fc577df9dc31652cae8a3d0c4
7beb9d51c4c2dad9379f5419f4be2a95bcf28acc6078b83c01c0bbe92d57566f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-7beb9d51.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 7590
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1da6"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZRfbmavdfvvOmBqmUJ3ksdGgRzRRSrt2UTihk2aIxn1x38NTXV%2BsLNTWDtNZ5uxRcZzo7sbFoEr6vxh0SnfVrXj722nlYuF7OXu7YyjlVUyXTcMDLK5Yhvus3OUve1fYXI5sQIhmXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d04aa356c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-02fea508.jpg

104.21.19.111

200 OK

5.3 kB

URL GET HTTP/3
flaredownload.com/assets/hl-02fea508.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
5.3 kB (5283 bytes)
Hash
dabe7397f2f12bd172e5bcdb9b0ac948
851a0a5b2e4b8507ee9798698c47864007096985
02fea508319165ed8d3758013a88a7fe7cbbd8c7968f8079ba5ab6c871cd9d4a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-02fea508.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5283
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-14a3"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=asmuyYtKqAh20IyO6T6x2uIPlMe5DCWx1G%2BA%2FUHZyh3pGk0br87MhYUPkD2w%2Fe%2BC9lJd4CxRIcTtaOFssf%2FxjfvEFwMrvGS5kmBRvZGAcb19xUgxq6oQHl0ky3pfo8PbxxVZcklANw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d04aa756c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-2a4a6f59.jpg

104.21.19.111

200 OK

4.7 kB

URL GET HTTP/3
flaredownload.com/assets/hl-2a4a6f59.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
4.7 kB (4673 bytes)
Hash
8294beeaadae14e946966c78d6be8fb9
dd1abdd63a38c0559caf43e6ea3678e7c69e53f1
2a4a6f59ed9f3ea5861519d6955b31aad3473aaa7bca0a30a7aef541f6cd010a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-2a4a6f59.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4673
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1241"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X6XwWq7BAFprO3RApyTSPVzUbYDQMXPL5T%2FF9gU29fW2tIJ5oaFd30ccqV3EHFohDIDzYWIj4geH1TnXa%2BAdfl9v9V4SCXqb0XQ1%2FlYBy5Duk568of20%2Fn8qwq5CPwZXYjrBEo%2BU4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d01a4a56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-399c2214.jpg

104.21.19.111

200 OK

7.5 kB

URL GET HTTP/3
flaredownload.com/assets/hl-399c2214.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
7.5 kB (7540 bytes)
Hash
96287d0c654d417b1d6d484ad32af943
4e366601ae7488c2800bfafe9c463043d8a5e486
399c22149637009094f60058f9d6fea536b461dfdb54693f21dc25a0be9116b5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-399c2214.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 7540
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1d74"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jlFIP6lBQtK5GMMnUNq2R0AWnRtsH%2FhSjHlFbK32smZWciDp%2F9d%2FqrNwslyFfn1Ue6Tc9ylWoSD9AoHmE3KdIFnZ9BU77zkWhpH7OdQZ3V3CRIFMOlnieuKDrE4WPkCqsaz6eUkSAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d04a9b56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-87d1cfa7.jpg

104.21.19.111

200 OK

5.8 kB

URL GET HTTP/3
flaredownload.com/assets/hl-87d1cfa7.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
5.8 kB (5788 bytes)
Hash
992c1cf6ab11e3184f58f5a5a75b77de
b48e174e00169cc2bdd31d409aa89e29ea880006
87d1cfa7e16fbda4ee2fb1d966691e5e287bc61e380c5e9528aa16067f61d671

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-87d1cfa7.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5788
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-169c"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MgG%2B%2Fg5p0hoC%2F6LpXCrBdWMyVEuNnRedeXb1j7%2Bkhm50J8d7XTOklPErz7o0M%2BJGixAjR6%2FEjPd2TzxZpobJhMuU%2Be1U6NuA910dQFwdslMqLN38dBa66YVkgCzz9NhOt53NLZLnsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d05ab556c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-81be0e6b.jpg

104.21.19.111

200 OK

7.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-81be0e6b.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
7.1 kB (7114 bytes)
Hash
04be3a776da95c8b0263a2704d2ecf15
7f677a70a0bb778185002c9f0abc877c0645b217
81be0e6bfafb6fb2aec23884ac08b47254f5474cb1e576c58f67ac850e897c70

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-81be0e6b.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 7114
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1bca"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0btB0SDCJlLjSxDgaS2G3nhrPc%2F62iy4ynp0iHkuJyZLk1Vp7YPxAY15lSVlw2XRbRi%2FXVCE%2BVo8%2BCJQTImY2aDpwl2BNAkZyAQF%2B0xnUEo0aVd7WMLNOw7N3WaevE4aCljiWFXs6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cffa0e56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/prod/images/f4a32eb2e5f203dab4882f7b7581b06e.png

104.21.19.111

200 OK

9.2 kB

URL GET HTTP/3
flaredownload.com/prod/images/f4a32eb2e5f203dab4882f7b7581b06e.png
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
9.2 kB (9232 bytes)
Hash
f4a32eb2e5f203dab4882f7b7581b06e
8d51933205a3ed27c2c6bd0182142d6f8432d929
83ec91fc25549922aa0f873a3dc6a3e71f83d8b8cd75fb018475762be29a894e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/f4a32eb2e5f203dab4882f7b7581b06e.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/png
content-length: 9232
last-modified: Tue, 03 Aug 2021 15:21:51 GMT
etag: "61095f0f-2410"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nkj8Yhzkz80mEqdX7JqkqkHtkIYRw%2F0JtoU106KLZttVyxnHwzIImp07LjV2WrQBzo%2FRQ1ei22AFHo5%2FvuM3gb4FCglWYPUFIjyayFOxkSeBeKyFm8Fj3nK%2B7mMwKDWlmbX03MtuUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d0bb8b56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/prod/images/507a527a567bb37dd8bf2e50fa7d51c2.png

104.21.19.111

200 OK

50 kB

URL GET HTTP/3
flaredownload.com/prod/images/507a527a567bb37dd8bf2e50fa7d51c2.png
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
PNG image data, 904 x 528, 8-bit colormap, non-interlaced
Size
50 kB (49726 bytes)
Hash
507a527a567bb37dd8bf2e50fa7d51c2
48f408956a84e7b4ffe65231d8bdb2f3c0a3501e
3fca4624d38dd6a2eae72c8804673bde06d77fc24ff3e2de898532bd570ba73e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/507a527a567bb37dd8bf2e50fa7d51c2.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/png
content-length: 49726
last-modified: Wed, 01 Jun 2022 14:06:39 GMT
etag: "6297726f-c23e"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YDHMO5iS8QmD0P382r3xh43p52Z6b8HkoD7seBRR1C9hDJYC51iYzM6OHhSwOzIEPgbKLwcT7JSxy9DnFoltOtMhA5kcA8AbqzcZI9H2c%2BAsO%2FJpD7sZpxAHN%2FnOFbxUaNsxn8Lr3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d0cb9056c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-684d6db5.jpg

104.21.19.111

200 OK

4.7 kB

URL GET HTTP/3
flaredownload.com/assets/hl-684d6db5.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
4.7 kB (4679 bytes)
Hash
be7c648d8e77e10f0e9bce3e516479ba
ea38a214ae51756def423fddd15eee337f9747fc
684d6db5d28a53ec3a882c15b1f15389842f145ed9e570d404425437a98b9370

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-684d6db5.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4679
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1247"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pFMA%2FG1KszPla7i6F%2Bl3zy3u6mwxdK9z7pK9HVGb%2B5OW1dFftIt9XuMWvfyrW3FxIFeHSdEET%2BCYtQBkA8y5w6aVXedxZu01dRmXWZrfzn8Hr59L2uVwsWJkbhIKXWkTKBe%2BBDQPdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d04a9d56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-7375a4e3.jpg

104.21.19.111

200 OK

5.0 kB

URL GET HTTP/3
flaredownload.com/assets/hl-7375a4e3.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
5.0 kB (5008 bytes)
Hash
a5fcd8edfcfa5a5628bac9d1ea6e239e
a4af35f8773283e17621e513f617b8e8f37df8a1
7375a4e3525a59f12ac3a2591e548ecba69094a4dc720212c99192ddcd55cf5e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-7375a4e3.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5008
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1390"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2h6azxLbSSBsEcnkKosQQji6B%2FXcjnaU79yCm8R%2BIisy4Xceebt8RcHrddbQFV14qO1eaNynR0HuF8rd4k4IrIj8UtlQ7eaUpg8YZ%2BmTiCDUq1gy5o1jy56aQpf%2B3LKC%2FdKR%2BDlZXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d04aa156c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/prod/images/2a17e773fa7e237f31b900c21ed0a091.jpg

104.21.19.111

200 OK

62 kB

URL GET HTTP/3
flaredownload.com/prod/images/2a17e773fa7e237f31b900c21ed0a091.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x900, components 3
Size
62 kB (61492 bytes)
Hash
2a17e773fa7e237f31b900c21ed0a091
183c4906f58fe50d7970f38ad40c785ba0ad69e8
ab5b8a4f501189dca65662d3555557a01a8f9d12625fe5d9bbbb8ec19c0b9f1a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/2a17e773fa7e237f31b900c21ed0a091.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 61492
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6297726f-f034"
last-modified: Wed, 01 Jun 2022 14:06:39 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kWlYeEJDOoZonG3zAzB6tgCHPLgUhP8bB53ao%2BbTm4nsOCC6mM5xwoOwkSO0p0HmrmgL9cwLMRxhHbZYj8YvTv%2F%2Bz9s9wuF1Ge%2FD7JYcl2SNtoQZd86KKbdTtMa9ldURUwQKV55l5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d0dbc856c6-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

216.58.207.227

200 OK

7.7 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 03:25:26 GMT
expires: Wed, 07 May 2025 03:25:26 GMT
cache-control: public, max-age=31536000
age: 49787
last-modified: Fri, 22 Mar 2024 00:01:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2

216.58.207.227

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7840, version 1.0
Size
7.8 kB (7840 bytes)
Hash
8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 05:07:49 GMT
expires: Sat, 03 May 2025 05:07:49 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:02:55 GMT
content-type: font/woff2
age: 389244
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

216.58.207.227

200 OK

8.0 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 15:13:04 GMT
expires: Fri, 02 May 2025 15:13:04 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:59 GMT
content-type: font/woff2
age: 439329
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 19:57:12 GMT
expires: Fri, 02 May 2025 19:57:12 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 422281
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2

216.58.207.227

200 OK

31 kB

URL GET HTTP/2
fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31052, version 1.0
Size
31 kB (31052 bytes)
Hash
5c4f357d4926fc197d43abc63b7fca8c
686af7000d038d7479ed36b48a8ebb0ea9b98aea
1393acc632c160def86b45c2521c8ee742b7e6239d0d90fb95f51d55cf48b9c3

HTTP Headers

GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 08:53:08 GMT
expires: Sat, 03 May 2025 08:53:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 27 Apr 2023 00:27:41 GMT
content-type: font/woff2
age: 375725
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2

216.58.207.227

200 OK

31 kB

URL GET HTTP/2
fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31052, version 1.0
Size
31 kB (31052 bytes)
Hash
5c4f357d4926fc197d43abc63b7fca8c
686af7000d038d7479ed36b48a8ebb0ea9b98aea
1393acc632c160def86b45c2521c8ee742b7e6239d0d90fb95f51d55cf48b9c3

HTTP Headers

GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 08:53:08 GMT
expires: Sat, 03 May 2025 08:53:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 27 Apr 2023 00:27:41 GMT
content-type: font/woff2
age: 375725
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2

216.58.207.227

200 OK

31 kB

URL GET HTTP/2
fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 31052, version 1.0
Size
31 kB (31052 bytes)
Hash
5c4f357d4926fc197d43abc63b7fca8c
686af7000d038d7479ed36b48a8ebb0ea9b98aea
1393acc632c160def86b45c2521c8ee742b7e6239d0d90fb95f51d55cf48b9c3

HTTP Headers

GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 08:53:08 GMT
expires: Sat, 03 May 2025 08:53:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 27 Apr 2023 00:27:41 GMT
content-type: font/woff2
age: 375725
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

flaredownload.com/assets/hl-bdd7d0a6.js

104.21.19.111

200 OK

1.0 kB

URL GET HTTP/3
flaredownload.com/assets/hl-bdd7d0a6.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (1078), with no line terminators
Size
1.0 kB (1025 bytes)
Hash
5241b94253552f6294dbfb1179313651
cbc6eb4153ed373e77c25a5d91d05165e8914930
10ab7cd7827113ffd70dbbbc6f7320aac05a102521e3b5a392061771083f5775

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-bdd7d0a6.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-016c1a2d.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1079
access-control-allow-origin: *
etag: W/"6639e6e3-437"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BvDhCQfzgfeknMnrxlUFnnnfQU1hxXSW2TZPOYMJaa4P4Ic46H88j5uqJOqSDPOcoB%2BZBKS6w4FPyx0TjSXIrOryXM35kupKq2aSrzKok%2BJ0a1CJdN6pmYr%2BXgYGwUGQg4J42t8J9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8802d9d2bf9956c6-OSL
content-encoding: br

flaredownload.com/prod/images/7db9263a9e50647a1bb1ac2b22c3fcf8.png

104.21.19.111

200 OK

3.1 kB

URL GET HTTP/3
flaredownload.com/prod/images/7db9263a9e50647a1bb1ac2b22c3fcf8.png
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
3.1 kB (3107 bytes)
Hash
7db9263a9e50647a1bb1ac2b22c3fcf8
da4f24a200bb24b0aa80bbf9cda51b23cc215899
89590a392246cedfcb857a4853484346da0fc42a52e17cc3ea8697ca02ef75a1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /prod/images/7db9263a9e50647a1bb1ac2b22c3fcf8.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:14 GMT
content-type: image/png
content-length: 3107
last-modified: Wed, 24 Apr 2024 14:10:09 GMT
etag: "662912c1-c23"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GucxXZ9ZugykUCzU03EBcjhXUbPajrPXznmo6fEQoP12%2FvSq3d1g7J%2FouEAPweJr5lWNXBJu88fKi80LJHsnV71fwY5bj6Z7lUOq7s3HEfSebA5YCPA6LLQRRolrl2RGjMwcHh8fwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d45b7256c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-4ae220c2.js

104.21.19.111

200 OK

6.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-4ae220c2.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (779), with no line terminators
Size
6.2 kB (6154 bytes)
Hash
425b8e07905530ece899be3e471f8de4
050b8cd6c8dded4cb5860882d4b69254563e501b
c3cb2ecc41b20ffc0de2ee68d324287446c486d8b6dcbcddeefb6efad65d12bd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-4ae220c2.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=780
access-control-allow-origin: *
etag: W/"6639e6e3-30c"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BQb4s08lsBvgpVYLWHyhu308UFypXNafe9T7Fbl%2B5q2H%2B4LdvWgV01OOfiFFoYjHVdkT%2FSdRAdwHXir%2BfckuosU4r8wEfENsUoxvSGYh0dQOcl%2B5EjvKpFNw1kzs7vvL01mw5n%2BTgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9d4bc3e56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-df7628f8.js

104.21.19.111

200 OK

6.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-df7628f8.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JavaScript source, ASCII text, with very long lines (2841), with no line terminators
Size
6.4 kB (6418 bytes)
Hash
d7336f715313e5c98829f811c8bad75d
483645778f0cbaf444c0ae6c3745aba261bc4c28
371b971cf0c509d16c73815d387a3e8f8ecce48194f3b2671bc4ca84d226daf8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-df7628f8.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2842
access-control-allow-origin: *
etag: W/"6639e6e3-b1a"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=loLlazX0z8RVGM7PXzE%2FVVfcLfb4zw0f%2BU3g%2BTT3A3ni5utV90aRa0oBnCcNeygpd455e8WZvdf%2BPN6qq8y9yMf3OB9KaiyK8NaLv94Wc1huiWYn53DwCobz5Hd7joUOODj3s81tCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9d4bc3b56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=jEg_Zha9fzVbLHZQ4mYSczacEQw_8LPsGlT4-U358jmGm0oBqVf__qXBqBiXPliuVCg1pju0nwkUvjLwevhSPHejxnyd4cAJl9ggmSB1vQHXgVipi_Jp7kQrSXRchKVc
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Tue, 07 May 2024 17:13:49 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 100
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

flaredownload.com/lead/prefill

104.21.19.111

200 OK

64 B

URL POST HTTP/3
flaredownload.com/lead/prefill
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
64 B (64 bytes)
Hash
0a00dc476383c35bcfbc0ea44c3a60ea
36ebdfa0bfa4aa0ec8f4d7417d2112bae7d406db
819bd596583bc3bc638b2fa8d87d80b16551a1d68abb86261795db848cc226d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /lead/prefill HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
sentry-trace: e895a96cd36e4699b4c34c75a4b4905d-a1bb3358a89970c6-1
baggage: sentry-environment=production,sentry-public_key=9056b383582c444792eb65c1726488d9,sentry-trace_id=e895a96cd36e4699b4c34c75a4b4905d,sentry-sample_rate=0.1,sentry-transaction=LandingHome,sentry-sampled=true
Content-Length: 56
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:14 GMT
content-type: application/json; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ewMbBpvLrZYKaNh7hyoZdd0VwQMmCC7KHx1XVQjPIqa9CTJ9MukW9o00kT%2F%2B6JFtHZgo4IWKFnxU5kYh%2FfzP4pWnNZtSBUw3aDDV6%2B6AaC3aQxJ9usHEWWFpbDeuvs1z%2BZIilA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8802d9d4bc3856c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-e2b7dcad.js

104.21.19.111

200 OK

774 B

URL GET HTTP/3
flaredownload.com/assets/hl-e2b7dcad.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (798), with no line terminators
Size
774 B (774 bytes)
Hash
e2d5077ed7ca6ed08531756f0580c50c
9165f8ea88116b5f24c6e631bf601aadb6b72496
54fa618bbf0d12932443343e0d967b125ffab1652a00e308ed68a7dc58469a95

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-e2b7dcad.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=775
access-control-allow-origin: *
etag: W/"6639e6e3-307"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A0ITMFxx5Vmym8Izt2bP7zu%2BN8Rtumt5%2BZs1OM77vW7hDm08sB5F%2BxLQN7zoZ2XZ3fx9%2FpDqBOOBLYPV7AxrGi%2BqiFhEwBgAQXZ%2Ba9oo%2F5wk%2BgmdWzzc4B4i3wswpCGoD0Uw4XPDIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9cbd97556c6-OSL
content-encoding: br

flaredownload.com/assets/hl-8ecdb346.js

104.21.19.111

200 OK

6.3 kB

URL GET HTTP/3
flaredownload.com/assets/hl-8ecdb346.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (6661), with no line terminators
Size
6.3 kB (6329 bytes)
Hash
47c46646da7f220e939e22227ad81c52
943b29a57ab33348040254a84f677e9e7199f513
ea1e2a1bd2536c133f8c25c5d167fa60a5979e6875a2eeb163e1ef9a6443b7f1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-8ecdb346.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6330
access-control-allow-origin: *
etag: W/"6639e6e3-18ba"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZhRGXZt%2FHUlLMNlnKTUOMdU1IVFI8sM%2BPzJbAuxRl4Z91lwvL%2F5wg5Ejc0OUySyXIiVog2%2BGnOm%2FYR2%2FbS%2F3OxB3esThUsX%2F6lm%2Fn4f36icuPzvCkguczHSP3tMenpG1powzdFX9bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9d2bf9756c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

secureanalytic.com/scripts/push/script/02eyoyxdkz?url=flaredownload.com

104.21.77.48

200 OK

8.1 kB

URL GET HTTP/2
secureanalytic.com/scripts/push/script/02eyoyxdkz?url=flaredownload.com
IP
104.21.77.48:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerLet's Encrypt
Subjectsecureanalytic.com
FingerprintE8:56:22:9E:5D:B8:81:BD:9C:20:0E:24:64:BE:C4:CA:4E:D6:C9:63
ValidityFri, 29 Mar 2024 10:27:40 GMT - Thu, 27 Jun 2024 10:27:39 GMT

File type
JavaScript source, ASCII text, with very long lines (8385), with no line terminators
Size
8.1 kB (8143 bytes)
Hash
b45c7286594795de3b392f6f8942604d
51239b08544394e811b8fdcc3bdc1df3832256e5
d1cfecd1075f9a9eea50304717a1fbd7cf2601c2d2bc80c698d4136846fdbef7

HTTP Headers

GET /scripts/push/script/02eyoyxdkz?url=flaredownload.com HTTP/1.1
Host: secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript;charset=UTF-8
expires: 0
cache-control: max-age=14400, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data:
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()
cf-cache-status: EXPIRED
last-modified: Tue, 07 May 2024 14:33:04 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O6QDMwtpfbWGrGpwNvZujuUp9pihXWOAvWDkbKaQQ%2BrV%2BAMpBj6WNhAlM2gIioltLWi9sEEij6oaXg%2FpYXe5oprx9ZAuGu9AfGKTUbZmbymYjcGywvenTY4EFWp7bSEg%2Fi3FCzI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8802d9c92bc90b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

flaredownload.com/assets/hl-76eb7d98.js

104.21.19.111

200 OK

616 B

URL GET HTTP/3
flaredownload.com/assets/hl-76eb7d98.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (636), with no line terminators
Size
616 B (616 bytes)
Hash
099fdbaaddc362dbfee0057dbff50e42
bb9ea6df527763127050ca50a6801810da55791d
55007d437735695935cee018f9583264b5652e527d3cd8ea83b96df0b07528a2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-76eb7d98.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=617
access-control-allow-origin: *
etag: W/"6639e6e3-269"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=guHlivo94So9AArP1aKI2jddzbf935JNK63v4OutNxuXENMlIaKe5y3N8ODAweZ4%2Fkb5IKdj7Oy84ocMkrkJlu%2B%2BRb5EcccJ8HqOeZa%2BGCXrkMzOVt22EtWqK5v%2BBNsoS4Iml7nRsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9d4bc4056c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-346b376b.js

104.21.19.111

200 OK

1.9 kB

URL GET HTTP/3
flaredownload.com/assets/hl-346b376b.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JavaScript source, ASCII text, with very long lines (1960), with no line terminators
Size
1.9 kB (1922 bytes)
Hash
e7731485a49d3b18ab73c2efd5132cbb
983a86196a2657a6e6e730e55f4c771afa23c1c1
b62fedde63fd2481efaf838bec545e9ca1b4e97819ab30853a1b385f2c39586b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-346b376b.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1923
access-control-allow-origin: *
etag: W/"6639e6e3-783"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H53PD%2BetlHbN03%2BZeMSVCJWIthXLCHYVGcfrtGDX6%2FZWd9mXwJliptEhMbjlLfEnuXRy5rcaQk%2B7tqmz9KmWwgjWs85e9JghkaclN1hm0IxI7WNos9UQGYl3mKUWBqrFr1v9jgB3GQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9d4bc4256c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-e2b7dcad.js

104.21.19.111

200 OK

774 B

URL GET HTTP/3
flaredownload.com/assets/hl-e2b7dcad.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (798), with no line terminators
Size
774 B (774 bytes)
Hash
e2d5077ed7ca6ed08531756f0580c50c
9165f8ea88116b5f24c6e631bf601aadb6b72496
54fa618bbf0d12932443343e0d967b125ffab1652a00e308ed68a7dc58469a95

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-e2b7dcad.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-b0e6ff5c.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=775
access-control-allow-origin: *
etag: W/"6639e6e3-307"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A0ITMFxx5Vmym8Izt2bP7zu%2BN8Rtumt5%2BZs1OM77vW7hDm08sB5F%2BxLQN7zoZ2XZ3fx9%2FpDqBOOBLYPV7AxrGi%2BqiFhEwBgAQXZ%2Ba9oo%2F5wk%2BgmdWzzc4B4i3wswpCGoD0Uw4XPDIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8802d9cd5c4a56c6-OSL
content-encoding: br

flaredownload.com/assets/hl-b9bac5a5.jpg

104.21.19.111

200 OK

7.7 kB

URL GET HTTP/3
flaredownload.com/assets/hl-b9bac5a5.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
7.7 kB (7679 bytes)
Hash
426fba688b684a67c8cb65557becb5c1
de124053da62bd456333dd8c1b8ca1a0e2631a51
b9bac5a517852d94cae6087501072098f7003cdaf00d9e574fa6ec6b6761995b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-b9bac5a5.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 7679
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1dff"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OBV0oBEDIMsklU61DoJN2I0fn%2FYU81EajWgwmvocvbJYSgASX2jiUWovzOrCLRcmq1P%2FGFvlWXA8cZYZRXu0HW4yvS1smjEuTRrzwzqLbePFeATPxG9fhTJ4xUW1g1CEFHSMD8Jztw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d00a2f56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-aadb31f4.jpg

104.21.19.111

200 OK

6.8 kB

URL GET HTTP/3
flaredownload.com/assets/hl-aadb31f4.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.8 kB (6755 bytes)
Hash
33b0709aafe9e4ca27700b1f4f6e3742
2d780b3a4f5e626ac243e57c09f86f03c908988c
aadb31f4059d549136bfa2f75ab7eee14b3709d01e3b37a0b99c936de70dd117

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-aadb31f4.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6755
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1a63"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WcbDGqOEFEFhNINroE38%2B7mx2taRM6kI5tJSlnVszrwXek07iZnJha0F99F7yXEJ2wV8khO%2FHC%2Fm7B8VOACVOZ0bOL4nh6QV01MAqefFiqPzcT7O3qp8nY%2FNDrDNFgRYH9BmJk8%2BIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d00a3656c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-ad074853.jpg

104.21.19.111

200 OK

6.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-ad074853.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.1 kB (6072 bytes)
Hash
1fd074f85ad46e3f0bc53725bb8668d8
692c8e92241ab353dbc3da8050e826c079807f13
ad074853fddbb6c29173f89594bb956114335614c583fc07f83a8e52abb986bb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-ad074853.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6072
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-17b8"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=alnqP%2B3JwzLK1sNsUewUm2SzNdn6uRT%2BV7ffGmVIrkabhPcrTxy6sGwCZ6EZX9Kz0hxH35bT25VTrOlUoc46JfNISjgSBd8R7D8VelXpoIoRFzP81I0cuIyjRK1kRrI66UmHybHCXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf6d56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-b456c08f.js

104.21.19.111

200 OK

415 kB

URL GET HTTP/3
flaredownload.com/assets/hl-b456c08f.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
415 kB (415157 bytes)
Hash
75fc5dfb4def286f360fd3e9b60e3258
604f5b768a4c908346eb658ae1ced8fa899d3ab1
52f5ccfc09288beb5d15e5e4fce478886f53da4472c12b7a98eb3ec9bea7baa7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-b456c08f.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=415158
access-control-allow-origin: *
etag: W/"6639e6e3-655b6"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0UX8nODhCYSrrMKPtjx15RfX9Sl%2BK4WyzX09N%2FMyiykPMZo1MYbo%2F0Aul7Nb5vm72wxTcAR8TsrVgl918l6KlajEjwyvS4WlXMebVgSq1jo1v6sQNuGsrR5cMpme6dESM%2Bl3jM2fmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9cbc95556c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-449fd3ca.js

104.21.19.111

200 OK

418 B

URL GET HTTP/3
flaredownload.com/assets/hl-449fd3ca.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (440), with no line terminators
Size
418 B (418 bytes)
Hash
98f2ff2aed9cf22b1e11eae73236a83c
e9b0b3d9b15611c4585b39dd9b7d1b0065193096
6a6261cc75998cb655454c5f059272cc1785919afd99d806f3ddf19ed8c3e3d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-449fd3ca.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=419
access-control-allow-origin: *
etag: W/"6639e6e3-1a3"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hyx6VM1o5L0jVFb%2FaLh31GF7ShBXyhoXCvU7IZlkrkg%2FcU3OWkftD0OmTzZHZdOVmJ4A52CliUODcwuHVBmIInx2qJUmacL2w1RTNMjWE8urO8CydRF6%2FRuzxOzJ9PLuWfINE8%2BPdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9c829d956c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-acb6c952.jpg

104.21.19.111

200 OK

4.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-acb6c952.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.1 kB (4116 bytes)
Hash
dd366ac9d74ff94abd56fdf013d610c3
de6f851468cb214626c33d4d950a2da822f60f1b
acb6c952b0695411d52303adeb6401ca87f6cee1abbf98e475eef1dc295ac212

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-acb6c952.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4116
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1014"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PHY2oELlvsciEk55L0oTtpKUQGT79IOjwCDNj%2FRCKxngJ0ljA2PxfGk67OkdLFla1YQlaGcnj9eR8r8UWkOMFIIzSGbvyXWocxxv3VXQtNYAZ5BLLwJem8oEVWEzl3hWtxs0j%2BhJGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce4e4656c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-621ed7fe.jpg

104.21.19.111

200 OK

4.5 kB

URL GET HTTP/3
flaredownload.com/assets/hl-621ed7fe.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
4.5 kB (4453 bytes)
Hash
a9abe7638f0c13114639302793e198a6
05b775a1a5f51edd6942f715dfef7888bfd54f6c
621ed7fe9a7beee029a23a9ab2dbdb9383291761ca6cd0aeffc4a99ef70d2d59

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-621ed7fe.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4453
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1165"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bgXogd4NbOIJ6mNkEwLPii%2BaEkLX9IMEnlhKVdVHkYNgLbt8KqYEH%2BVF3JhH%2FzgDtLieOnIqoCJEDfUy%2FWkO47Pzg19FbHakL0YOySB%2F1znb9bDbRexzqSr%2Bot3qR6Xn75aNKXsZ%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d03a6f56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-5975d21c.js

104.21.19.111

200 OK

358 kB

URL GET HTTP/3
flaredownload.com/assets/hl-5975d21c.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
358 kB (357727 bytes)
Hash
4d8009bb30dc1d97f408e5505d79337e
8a215147051bf2cedc5c187e1bf21c315e706fb6
9616f8c43600f2ce985ec1cd5f9b38a2aa7ba11f8a3fbdeb707cb0e9b1ab2833

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-5975d21c.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=357728
access-control-allow-origin: *
etag: W/"6639e6e3-57560"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2eLW8eudGLRgRdMIO0JkFUF2JTb%2BQPGKWiGQ%2FN%2BzuFyNZhQ4wqanBlHLubXfGOrLzAh1nXVjvRVV7TZg7UHpsdo7BeTuhesW8i6MVc2vUePkgiUdkAXYrbJXVtIxrlgzlbd0AKFT3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9cbd97d56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Nunito+Sans:wght@300;400;600;700&family=Poppins:wght@300;400;500;600;700&display=swap

216.58.207.234

200 OK

13 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Nunito+Sans:wght@300;400;600;700&family=Poppins:wght@300;400;500;600;700&display=swap
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text
Size
13 kB (12793 bytes)
Hash
6215842ea86ca5b2e002702c106cb53a
b5974b6305ac7b4945c077e22c5e6f224b88ee8f
9614ef1edf7c8bb558111b6a73567ef53a2a446b895c16f5f7d432dc2ebaa3ff

HTTP Headers

GET /css2?family=Nunito+Sans:wght@300;400;600;700&family=Poppins:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 17:15:12 GMT
date: Tue, 07 May 2024 17:15:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

flaredownload.com/assets/hl-5a92d39f.svg

104.21.19.111

200 OK

1.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-5a92d39f.svg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
SVG Scalable Vector Graphics image
Size
1.4 kB (1387 bytes)
Hash
61a6e3f432277ec5030d5993642dc148
d6a62761bd62a86871fe9e920c269c91ad57048e
4ff24f4c3f3b97bf30ed53213807739a1de2708f06204145fe8181dd768c70e1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-5a92d39f.svg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: image/svg+xml
last-modified: Tue, 07 May 2024 08:31:30 GMT
etag: W/"6639e6e2-56b"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xnNrhhCt2I4YPcBIaHfRWf63AE6JzGdv%2FQqxrm5k%2FAncM0sf%2FceO74E6Dc3x4f5vOqZfMgRNtnJA59m%2B4LnTeQTDIaCn3ZWu98SwS5tuA8jAOk1qupGqLj1cDXSX08k5a%2B8MURyH9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9cdfda156c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-449fd3ca.js

104.21.19.111

200 OK

418 B

URL GET HTTP/3
flaredownload.com/assets/hl-449fd3ca.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (440), with no line terminators
Size
418 B (418 bytes)
Hash
98f2ff2aed9cf22b1e11eae73236a83c
e9b0b3d9b15611c4585b39dd9b7d1b0065193096
6a6261cc75998cb655454c5f059272cc1785919afd99d806f3ddf19ed8c3e3d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-449fd3ca.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-5d7a8293.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=419
access-control-allow-origin: *
etag: W/"6639e6e3-1a3"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hyx6VM1o5L0jVFb%2FaLh31GF7ShBXyhoXCvU7IZlkrkg%2FcU3OWkftD0OmTzZHZdOVmJ4A52CliUODcwuHVBmIInx2qJUmacL2w1RTNMjWE8urO8CydRF6%2FRuzxOzJ9PLuWfINE8%2BPdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8802d9c90ba156c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-e6643da2.jpg

104.21.19.111

200 OK

4.6 kB

URL GET HTTP/3
flaredownload.com/assets/hl-e6643da2.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.6 kB (4568 bytes)
Hash
c0f762530aa00833ba6328a64c910f8a
044c62c83990115c53e59658bbdaa2d075eca48b
e6643da214e36390a15b41bfa03546bdb37da4441150628292ce7185ecf347f0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-e6643da2.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4568
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-11d8"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BBaWS%2BHoiFZMUVfIaVKhzDDJTFyAaypDq0sC6o2DKAJGg3sAc3HXn0%2FGwPS3doDlgB2vBbl2oKy%2BQj1JYbYOJ0sglJxBjKRip6zQxHU4afeX9Zrm298y1WCLPw%2FEadFrv6m3DheOKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce3e3e56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-8ecdb346.js

104.21.19.111

200 OK

6.3 kB

URL GET HTTP/3
flaredownload.com/assets/hl-8ecdb346.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (6661), with no line terminators
Size
6.3 kB (6329 bytes)
Hash
47c46646da7f220e939e22227ad81c52
943b29a57ab33348040254a84f677e9e7199f513
ea1e2a1bd2536c133f8c25c5d167fa60a5979e6875a2eeb163e1ef9a6443b7f1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-8ecdb346.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-bdd7d0a6.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6330
access-control-allow-origin: *
etag: W/"6639e6e3-18ba"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZhRGXZt%2FHUlLMNlnKTUOMdU1IVFI8sM%2BPzJbAuxRl4Z91lwvL%2F5wg5Ejc0OUySyXIiVog2%2BGnOm%2FYR2%2FbS%2F3OxB3esThUsX%2F6lm%2Fn4f36icuPzvCkguczHSP3tMenpG1powzdFX9bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8802d9d46b8656c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-3c19f363.jpg

104.21.19.111

200 OK

4.5 kB

URL GET HTTP/3
flaredownload.com/assets/hl-3c19f363.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.5 kB (4528 bytes)
Hash
7bb57064b3da555b47933a15a86965d3
0930420e23c95511c6e113680d74470b049012eb
3c19f3638e0904b32c2893a6c8fb3ca796c9cf9d8b3cab0526ad57a4cb4c4854

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-3c19f363.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4528
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-11b0"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y%2BdKlZ5Xyhkm4AM3Y7GUILuI1MTHoIepjc3wRdSmqnzvw9sm43Dfjh7fEqzqpxfu1DeU%2BOov5oApaLd8hclCIG%2Fe2aotBcrDjatfaGaKsuLxypppmDVWDEYxe8PXXDRziwuYXDINZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce3e3256c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-f2d64f8b.jpg

104.21.19.111

200 OK

5.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-f2d64f8b.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x163, components 3
Size
5.2 kB (5209 bytes)
Hash
ce088735d2725e092f85a164c8dc5ef7
0f6d58a84e5a92e7a3a609a494bd8d5f531540d8
f2d64f8b7911c158b0622638d94bc1f941c22a8766fdbd715f0db3eafc17cf1a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-f2d64f8b.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5209
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1459"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fJAjCxh9ZaZHZ%2FGPogQ7teCAfap2zs01Q45V0nGVOXiCrzzep7A%2B6LX9qsFlPx4Re9p7eOfqIOlo0sYAlq0YEhq8g3hjEr5oBdC9HikyMMlYLUl1otvok4GD91JhpV3uhar3u%2Fb3Xw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9d01a4b56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-edb2da2a.js

104.21.19.111

200 OK

1.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-edb2da2a.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JavaScript source, ASCII text, with very long lines (1438), with no line terminators
Size
1.4 kB (1410 bytes)
Hash
862c9cf6fcd7b7f9a63460432c1c4cd4
fd37338a883a89512e82afbc9c5e226b871d4fed
cd09ea827717eb9bf6f24164c61f1c8c8fbf4c41d80b4c9bdf48cefede2e3290

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-edb2da2a.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1413
access-control-allow-origin: *
etag: W/"6639e6e3-585"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QAEv3a1DSorbOMv3h9iyJbmvoq9fqsMG1V3%2Bh%2FlkxxaGfzEeZ8wqt%2BUzvnDwrPArAI26Cp%2BsqbcYitpQKkVzKrLSD8Iw%2BFLfldm8tZo4IM6X%2FehvemVz4bb1W%2FXUL695pxAFmimqYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9c839f556c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-72e67159.svg

104.21.19.111

200 OK

1.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-72e67159.svg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1243 bytes)
Hash
c84da063f129bbc9e8ee48b826d9a347
80df6570b47f9638dee840410ad513a91e01601d
a73c13fa83913dd604a65f35a22d81a924c8cdf51c2f68e42f9a5dcae2370372

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-72e67159.svg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/svg+xml
last-modified: Tue, 07 May 2024 08:31:30 GMT
etag: W/"6639e6e2-4db"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kj4fZN9AoxpmE97brGRi2pd3Uz8ibrzKh5VLbUXdb5dqXw9OLYtEjJAYewMfBhJau3VHqji3uq52dZewmEiBEJ0kW1y3fEH2ybv4Kn1LnGuMB2ya68ZaI6ZZUAmcmXGhXYfSqVGLGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9ce2e0156c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-a99ab87a.js

104.21.19.111

200 OK

529 B

URL GET HTTP/3
flaredownload.com/assets/hl-a99ab87a.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (555), with no line terminators
Size
529 B (529 bytes)
Hash
23de2b9cd67de8cebf3990c0ccc677ae
1e0e4cd12c96d1939af7334f2cd49229fbcc22bb
384e4c89377056cec005ce00d7bfbd1d7318ecd49f5a833054222a32b0add3e1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-a99ab87a.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=530
access-control-allow-origin: *
etag: W/"6639e6e3-212"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vxiXvW2ctrBz374JXzMqX6de7HT9GB2iboI%2Fz0boD8ce6c8qde69DUHvGjbMVvbxtM8aSAB8iJFo%2BFAwBPb%2BH%2F0MNIdDT7SAizDAqP3ZXPNiqOKqDcvQ%2Bllesl%2Fvolw3WaobUFlorg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9cbc95c56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-217f0e93.jpg

104.21.19.111

200 OK

4.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-217f0e93.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.1 kB (4127 bytes)
Hash
82ad2b6173f86edded2a6eaf38d27152
55f47839631d977dec1c8389fdd7376f1cc8d769
217f0e9303a8ee29c45f4ccd36cf9218646adba8fa4d19c9d0e70f7d2ae28f6f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-217f0e93.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4127
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-101f"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m21MhISc8YFKNVWAuoPDd0Qlau7NGDFyII7Qy8iqmOsZewUKodThD4Jh4HEZL2YndEhFiPlKPOYtId%2FF9e%2Fup3ApWinNyMfESJAxVu43b5Z92Ug9h41eJa9dw%2BsKE3dRKFW8VuDEbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce3e2e56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-5aa4159d.jpg

104.21.19.111

200 OK

4.6 kB

URL GET HTTP/3
flaredownload.com/assets/hl-5aa4159d.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.6 kB (4593 bytes)
Hash
eaaa903457c6407708dbedf9fec60884
1099f9eaf7438f111c18132233121742bbba00e5
5aa4159d205b1a3b7e86b75becd99648161a72cde599f7c2414166d7a78484c2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-5aa4159d.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4593
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-11f1"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NQV3eaGAObpEqKEvYOqT3GuZEB48v0t%2BMW8W5I4UGr%2FMzhBDOqaw%2BVX1UCij0IyI21ABJNFr25nu3lc1sz1sYegh87WcyIVhgcqO3XG4oxAohDKFo%2BR6G53x2mRnwWhMILIUrQ5lrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce4e5356c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-76eb7d98.js

104.21.19.111

200 OK

616 B

URL GET HTTP/3
flaredownload.com/assets/hl-76eb7d98.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (636), with no line terminators
Size
616 B (616 bytes)
Hash
099fdbaaddc362dbfee0057dbff50e42
bb9ea6df527763127050ca50a6801810da55791d
55007d437735695935cee018f9583264b5652e527d3cd8ea83b96df0b07528a2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-76eb7d98.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-8ecdb346.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=617
access-control-allow-origin: *
etag: W/"6639e6e3-269"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=guHlivo94So9AArP1aKI2jddzbf935JNK63v4OutNxuXENMlIaKe5y3N8ODAweZ4%2Fkb5IKdj7Oy84ocMkrkJlu%2B%2BRb5EcccJ8HqOeZa%2BGCXrkMzOVt22EtWqK5v%2BBNsoS4Iml7nRsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8802d9d4cc4e56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-9922c7e5.css

104.21.19.111

200 OK

33 kB

URL GET HTTP/3
flaredownload.com/assets/hl-9922c7e5.css
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (33225)
Size
33 kB (33226 bytes)
Hash
3b78b8a74d71838ca86f39c099c21196
257c2fe3ab0d64ebcb960375eac9fa7d17c0680b
9922c7e55577fdc7eb9d33cd439d2d2ce38a422f3ad10bbdba49044d6e008a54

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-9922c7e5.css HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: text/css
last-modified: Tue, 07 May 2024 08:31:30 GMT
etag: W/"6639e6e2-81ca"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mXl6X2nFVYPNduJ0s0S0V0rZxU36SeMh7%2B%2F3JQS7O7KTnqAAM733RXbdP06U9aqogq8jyMRDcOUZwgK2fNZrrknxjYoKKCqAa8pVmCgqGmaLHVBKJK%2FUiiFeSoQT5mowTyUIikZIdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9cbb93156c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/sentry

104.21.19.111

200 OK

12 B

URL POST HTTP/3
flaredownload.com/sentry
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
8bfbf34323641ed6f0fb5793b9caf689
9a56179c4fc20cec1799793db555b6d7a0ff2057
55539aec2a62d455ba717990aa4d97e30134710e192475a4fbe0a7121907dea9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /sentry HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 87440
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:15 GMT
content-type: application/json; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y6tbNpNK2HVi4Abx8j2zYzwbeLM0Efp8eV8OvX5Zi8Z2O%2FUr5IDalRUPKpuZGU6Aeje%2FV342y5UqyX6Mysn2FTzvNaaD3Wfsno2Up8cEDQ1%2FrLyyHe3IBUMDlcnjkD8p7EzDUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8802d9dbfb0156c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-edb2da2a.js

104.21.19.111

200 OK

1.4 kB

URL GET HTTP/3
flaredownload.com/assets/hl-edb2da2a.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JavaScript source, ASCII text, with very long lines (1438), with no line terminators
Size
1.4 kB (1410 bytes)
Hash
862c9cf6fcd7b7f9a63460432c1c4cd4
fd37338a883a89512e82afbc9c5e226b871d4fed
cd09ea827717eb9bf6f24164c61f1c8c8fbf4c41d80b4c9bdf48cefede2e3290

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-edb2da2a.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-5d7a8293.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1413
access-control-allow-origin: *
etag: W/"6639e6e3-585"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QAEv3a1DSorbOMv3h9iyJbmvoq9fqsMG1V3%2Bh%2FlkxxaGfzEeZ8wqt%2BUzvnDwrPArAI26Cp%2BsqbcYitpQKkVzKrLSD8Iw%2BFLfldm8tZo4IM6X%2FehvemVz4bb1W%2FXUL695pxAFmimqYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8802d9c90ba556c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-5975d21c.js

104.21.19.111

200 OK

358 kB

URL GET HTTP/3
flaredownload.com/assets/hl-5975d21c.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
358 kB (357727 bytes)
Hash
4d8009bb30dc1d97f408e5505d79337e
8a215147051bf2cedc5c187e1bf21c315e706fb6
9616f8c43600f2ce985ec1cd5f9b38a2aa7ba11f8a3fbdeb707cb0e9b1ab2833

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-5975d21c.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-b0e6ff5c.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=357728
access-control-allow-origin: *
etag: W/"6639e6e3-57560"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2eLW8eudGLRgRdMIO0JkFUF2JTb%2BQPGKWiGQ%2FN%2BzuFyNZhQ4wqanBlHLubXfGOrLzAh1nXVjvRVV7TZg7UHpsdo7BeTuhesW8i6MVc2vUePkgiUdkAXYrbJXVtIxrlgzlbd0AKFT3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8802d9cd4c2b56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-96ca03dc.jpg

104.21.19.111

200 OK

4.5 kB

URL GET HTTP/3
flaredownload.com/assets/hl-96ca03dc.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
4.5 kB (4471 bytes)
Hash
a5522e6155e17581ee37c0d88e361259
2adf12bfea35c64166942fec2e002030e1b95dde
96ca03dc8c7253854bd3a55e4bcfd78160531d1c6c30beed19247e2b88e1bf6b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-96ca03dc.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 4471
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-1177"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UgxCOd7n%2FvVspispuJe%2BRzFhKr1Adr%2FG0PyPzgIb8VTz1rUEgAQTdECN5%2FzWK%2FvHWZi9%2BAy0eEpFyj1nlXCyx0MCnOgGuXLF2J6ZWmKSV%2F9Bj9eoJm9vm8G%2F8uKU83hUkhptjh0fWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf6e56c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-a99ab87a.js

104.21.19.111

200 OK

529 B

URL GET HTTP/3
flaredownload.com/assets/hl-a99ab87a.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (555), with no line terminators
Size
529 B (529 bytes)
Hash
23de2b9cd67de8cebf3990c0ccc677ae
1e0e4cd12c96d1939af7334f2cd49229fbcc22bb
384e4c89377056cec005ce00d7bfbd1d7318ecd49f5a833054222a32b0add3e1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-a99ab87a.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-b0e6ff5c.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=530
access-control-allow-origin: *
etag: W/"6639e6e3-212"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vxiXvW2ctrBz374JXzMqX6de7HT9GB2iboI%2Fz0boD8ce6c8qde69DUHvGjbMVvbxtM8aSAB8iJFo%2BFAwBPb%2BH%2F0MNIdDT7SAizDAqP3ZXPNiqOKqDcvQ%2Bllesl%2Fvolw3WaobUFlorg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8802d9cd4c3256c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-044fffee.jpg

104.21.19.111

200 OK

5.5 kB

URL GET HTTP/3
flaredownload.com/assets/hl-044fffee.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
5.5 kB (5544 bytes)
Hash
df75d06572cdec1522ad8374001b6a02
4890eb125aaa92e3a17e1251f85c137afe819bce
044fffee470599d98137da9f90241240e592a53cdb634a4ec485b4c25e194f8e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-044fffee.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 5544
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-15a8"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FyOpB5y%2FdvsVmnNzDkjw24HlAJb42oymSUapzmPN65kPPu5Ws1zhv0d0hCWdIZB5Z49jZKcxmjBD2H%2B5VVK1iRXcSUTKC4aLOJGwe%2B1tMOcgmzLPhzbIT8tzhoH6EpCoR6xB34VnjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9cebf6856c6-OSL
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-b456c08f.js

104.21.19.111

200 OK

415 kB

URL GET HTTP/3
flaredownload.com/assets/hl-b456c08f.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
415 kB (415157 bytes)
Hash
75fc5dfb4def286f360fd3e9b60e3258
604f5b768a4c908346eb658ae1ced8fa899d3ab1
52f5ccfc09288beb5d15e5e4fce478886f53da4472c12b7a98eb3ec9bea7baa7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-b456c08f.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-b0e6ff5c.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=415158
access-control-allow-origin: *
etag: W/"6639e6e3-655b6"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0UX8nODhCYSrrMKPtjx15RfX9Sl%2BK4WyzX09N%2FMyiykPMZo1MYbo%2F0Aul7Nb5vm72wxTcAR8TsrVgl918l6KlajEjwyvS4WlXMebVgSq1jo1v6sQNuGsrR5cMpme6dESM%2Bl3jM2fmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8802d9cd4c2556c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-7786c8e3.svg

104.21.19.111

200 OK

1.3 kB

URL GET HTTP/3
flaredownload.com/assets/hl-7786c8e3.svg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
SVG Scalable Vector Graphics image
Size
1.3 kB (1274 bytes)
Hash
531489d1da65f4ab180a770fec31cab5
e820f5b843402e0e853ea1bd57ac83cc1a8b5e60
ebaacb99f9aede187503275edc1e4be7e78f8f76e7efd1d1ae93ca34100bdf44

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-7786c8e3.svg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/svg+xml
last-modified: Tue, 07 May 2024 08:31:30 GMT
etag: W/"6639e6e2-4fa"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qwAT7alsCMEOpISMJy76WCnRKx3oK%2Fh6aEXE6g5B0%2FkI0g27pj9qtofuTidU70hLn22Wtd2qgukKJZoCybtmu8vPFZOQaeI12HbrxIFtLCndrLGAS8qdHIOUnvD8ZYN0WbWm9v%2F8nQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9ce1ded56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-e625189b.js

104.21.19.111

200 OK

3.2 kB

URL GET HTTP/3
flaredownload.com/assets/hl-e625189b.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JavaScript source, ASCII text, with very long lines (3248), with no line terminators
Size
3.2 kB (3167 bytes)
Hash
3760a138899b9cdc2ae817843b8b8c31
45befab9c698b30bbb5d71004f6914f3e4736ac1
69338ec34741d6ccbceee41cb706c4a4f9e3639f1a5919f5b31bc4ee94de4ce8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-e625189b.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-016c1a2d.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:12 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 08:31:31 GMT
etag: W/"6639e6e3-c5f"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f59C6NiRllFr0rCFl0sQEJlvl9a4%2F%2FRLx5CPZhFwtSlnFJUPtoMG2e2S288iT%2F4mH400pHP6LDHQqqZSpUNrT9Wa3KLblzv1JLC2kUWJ7dCWRCWCVis0%2BPxwokfBY1%2BpCMds8avLcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 8802d9c819b356c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=AW-597243495

142.250.74.40

200 OK

218 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=AW-597243495
IP
142.250.74.40:443
ASN
#15169 GOOGLE

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (1822)
Size
218 kB (218391 bytes)
Hash
e71c5ffce6df308c6d06511ee4525899
f4aeda9492344a2eaf6447c888dc0fc53809af52
3235a3433ae5bdd084429f92608bac47b51a68cb2ef6a9d601fcfa6231ec351b

HTTP Headers

GET /gtag/js?id=AW-597243495 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 17:15:12 GMT
expires: Tue, 07 May 2024 17:15:12 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79090
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,500,700

216.58.207.234

200 OK

8.7 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500,700
IP
216.58.207.234:443
ASN
#15169 GOOGLE

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (8956), with no line terminators
Size
8.7 kB (8732 bytes)
Hash
91804c0df51e58b0bf469561e1ac2732
cc5a9023e310b49ef8f8ae32bb89ea774fe116ec
8a8aed46bfb9cdec8e34e76343b7e66796cf09926aef42efdfe5fa8a1fdda8aa

HTTP Headers

GET /css?family=Roboto:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 17:15:12 GMT
date: Tue, 07 May 2024 17:15:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

flaredownload.com/assets/hl-346b376b.js

104.21.19.111

200 OK

1.9 kB

URL GET HTTP/3
flaredownload.com/assets/hl-346b376b.js
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JavaScript source, ASCII text, with very long lines (1960), with no line terminators
Size
1.9 kB (1922 bytes)
Hash
e7731485a49d3b18ab73c2efd5132cbb
983a86196a2657a6e6e730e55f4c771afa23c1c1
b62fedde63fd2481efaf838bec545e9ca1b4e97819ab30853a1b385f2c39586b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-346b376b.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-76eb7d98.js
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1923
access-control-allow-origin: *
etag: W/"6639e6e3-783"
last-modified: Tue, 07 May 2024 08:31:31 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H53PD%2BetlHbN03%2BZeMSVCJWIthXLCHYVGcfrtGDX6%2FZWd9mXwJliptEhMbjlLfEnuXRy5rcaQk%2B7tqmz9KmWwgjWs85e9JghkaclN1hm0IxI7WNos9UQGYl3mKUWBqrFr1v9jgB3GQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 8802d9d57dd456c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flaredownload.com/assets/hl-43fd7d26.jpg

104.21.19.111

200 OK

6.1 kB

URL GET HTTP/3
flaredownload.com/assets/hl-43fd7d26.jpg
IP
104.21.19.111:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Certificate
IssuerGoogle Trust Services LLC
Subjectflaredownload.com
FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50
ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x100, components 3
Size
6.1 kB (6103 bytes)
Hash
05666f3faff5b124cdd5b27409d6862c
2a98632dfa2bcd3d2ecc9ce83a0108555c1db72f
43fd7d2695aed1295e524f965744c9d61beac5d3ecd83bd82fe5198dc745d284

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/hl-43fd7d26.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/free-download-now?subid=90ad9e20-ef60-4ca3-bc54-beab706665df&networkid=200347&publisher=15466446&isNewTr=1&stream=&email=&subsource=&subsource=
Cookie: visitInfo::4071=4f90eb3266c779e9e7a43fc93f13ad05017377b023fa6cf9d12b461cb982b71aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A4071%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%229702f0ab4cefb545cee01ce616cd1708%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%2215466446%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2290ad9e20-ef60-4ca3-bc54-beab706665df%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _gcl_au=1.1.2133580351.1715102113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 17:15:13 GMT
content-type: image/jpeg
content-length: 6103
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6639e6e2-17d7"
last-modified: Tue, 07 May 2024 08:31:30 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ttx3gAC1qKXRmN8JzHX0USJ7F7bTxCabYADY4KFVKxYg8fqJWkSxhgvwP%2FPPdybCEPxpwrZRQZrObfAymZWq84VuN%2Fh%2FcWdhAqqlX5cgNyo3W4pY1I6Geu47FwFlxEVvyz7wyBb42Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 8802d9ce7ea156c6-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML