r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2989
Expires: Wed, 08 Feb 2023 01:29:42 GMT
Date: Wed, 08 Feb 2023 00:39:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6244
Expires: Wed, 08 Feb 2023 02:23:57 GMT
Date: Wed, 08 Feb 2023 00:39:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5709
Expires: Wed, 08 Feb 2023 02:15:02 GMT
Date: Wed, 08 Feb 2023 00:39:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 00:36:32 GMT
content-type: application/json
age: 201
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4QIECNrdCQa0RKBKwgK5FvC/j6AMZ2MpP5Bv/L6Q1bIKMO79dvHf5qa7p3FHv0k8/U1PqzS/+Zo=
x-amz-request-id: 7C0G33P6WR46NP79
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 00:35:43 GMT
age: 250
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 00:39:53 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 4a2793786b1ce1206b70d285bea47b94
11747c77f2ef56d889b5148834faa184be7cfc07
af406b334b4df19c87a6911d78bbab5bc5628dc7ccac9d7d60050908c770fb52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4107
Cache-Control: max-age=161620
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 00:39:53 GMT
Etag: "63e2b3a2-118"
Expires: Thu, 09 Feb 2023 21:33:33 GMT
Last-Modified: Tue, 07 Feb 2023 20:25:06 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
104.17.24.14200 OK 5.8 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash a7e25a22602a2b2ed35f90fd5210cff1
148c4f275b60e6cf6253d6b4c7bdc486515b2202
312d94bafa68e11e3a4a8d7c06bc25ee161d1d965afb1fa99db79815a272d0bf
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 00:39:53 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4053651
expires: Mon, 29 Jan 2024 00:39:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k1k5jB7Y6auis6HLZG1%2Fw82Z2YNJ5VtiNC2%2Byrk8FJfpkGNJ9GT9cS5o%2B50%2FA%2BuMOvRt9K7GSzS9u4KzT0Vs8WC8p0A5CTx8rDFbjTZv%2FeZDZ7VawFIVnmpoaTVw3W2zw6%2B7UojZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79604f91aee0b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 518d4b693ac64e6388da8e8055ef42e6
a2ffec6c48f4f057a9758fcf7e3e9eee7976e2d0
3fa2a5b09b5924320e577147b9a0c768be8782e7cd853689d5026803e9bc3237
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 457
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 00:39:53 GMT
Last-Modified: Wed, 08 Feb 2023 00:32:16 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 00:39:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 4a2793786b1ce1206b70d285bea47b94
11747c77f2ef56d889b5148834faa184be7cfc07
af406b334b4df19c87a6911d78bbab5bc5628dc7ccac9d7d60050908c770fb52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4107
Cache-Control: max-age=161620
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 00:39:53 GMT
Etag: "63e2b3a2-118"
Expires: Thu, 09 Feb 2023 21:33:33 GMT
Last-Modified: Tue, 07 Feb 2023 20:25:06 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 518d4b693ac64e6388da8e8055ef42e6
a2ffec6c48f4f057a9758fcf7e3e9eee7976e2d0
3fa2a5b09b5924320e577147b9a0c768be8782e7cd853689d5026803e9bc3237
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 457
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 00:39:53 GMT
Last-Modified: Wed, 08 Feb 2023 00:32:16 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 00:39:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/ionpackagesa@2.4.5-icons/ionicons.map.js
151.101.129.229200 OK 450 B URL HTTP/2 cdn.jsdelivr.net/npm/ionpackagesa@2.4.5-icons/ionicons.map.js
IP 151.101.129.229:0
File type ASCII text, with very long lines (997), with no line terminators
Hash 4f99e4cab66993863bf9b62f8ccc0795
bf211ff4da1583f05ee836ab8554fc4319a9eac4
5f9997c78d1e420b59a2a5c534249ae9fc3b8f4dccb7e515e6190858f7252db4
GET /npm/ionpackagesa@2.4.5-icons/ionicons.map.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.4.5-icons
x-jsd-version-type: version
etag: W/"3e5-ejajT4zCObL7KtTkbUb8XeRVoTY"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 00:39:54 GMT
age: 5485869
x-served-by: cache-fra-eddf8230135-FRA, cache-bma1628-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 450
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 00:14:52 GMT
age: 1502
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
braj.spidermanmobile.com/
172.67.164.88200 OK 11 kB URL HTTP/1.1 braj.spidermanmobile.com/
IP 172.67.164.88:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source, Unicode text, UTF-8 text, with very long lines (8138), with CRLF line terminators
Hash 9fc13cb8ca06d4e15fa5460684a3ed4f
0df7adeb5ca2ed90c8125dea8ce9f1b9a106ac87
618a04ab8606ef6b389223b3a4ad36c7d18be790d800dca3975fd52043a3f7a1
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
NIDS Severity Alert suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2
GET / HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BWzV7pPySC6uIrriYMzStSUE5wU2LWWdjUmKG1ZFkthII%2BKhzvvNYUYErN2zo5NvEfKYZ2f5C21na7MwbRKHO3HZnkMMJywBQ09N37XTyFezOTeRQEPvEFv2wBhGicam1YvRO32rHdXM2L8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79604f8e3e3cb511-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash df16f452eeb9a80147c4abd1b80393e1
248aed7cea9103d076b9f0b7413a66c0cfa862ac
efbaaea0cbbdd13fadfd3391f6434de9797b1fe82fb1a5741b037048d967966d
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:54 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "FB4F19A7C4C4D6912C276B3C3CEF0DED23725967"
Expires: Wed, 08 Feb 2023 12:00:00 GMT
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1648
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f939d98b4f7-OSL
braj.spidermanmobile.com/css-zone/twitter.css
172.67.164.88200 OK 733 B URL HTTP/1.1 braj.spidermanmobile.com/css-zone/twitter.css
IP 172.67.164.88:0
Hash 28dcf01ece2f2656043f10d6ef880bdc
b582075c0a4a2373eb0b955f98a0156198fc1598
3129389560e2114e9e44c67a2f28c4289fc9fb13c9abe1a06bf604536d5f52ad
Analyzer Verdict Alert openphish Tencent
GET /css-zone/twitter.css HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:54 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 22 Dec 2022 16:27:20 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z6o85GqgRd6af9H2IoRyFuJaKnxm3qeEV8FppAuQLrCPRkQNc1n6SbxM78tL44Sn89kD1X%2FimroC9eLdN%2BFt9k3GDOrNASY9j2OTFNOjZpEoNufIqk6baMLpzMY8Z6nl9Si17Ox8AoUeUC0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f9168f7fabc-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
172.67.164.88200 OK 655 B URL HTTP/1.1 braj.spidermanmobile.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 172.67.164.88:0
File type HTML document, ASCII text, with very long lines (1238)
Hash bc3ba461c8a309acf61b6d9c41cb6236
88482306ecc9258d5e9cbb9ba5314dab223a5db4
31331f1b1519882d2f2fb60367708fd56a7a1ec0bddd0554c635547179c7dc8f
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 06 Feb 2023 18:52:43 GMT
ETag: W/"63e14c7b-4d7"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SHPbxJDRt1GVIIWIF2VWsNkxc%2FtoLs7q1Wu4%2B0t9nS9OanbLwBEXsct5dJNeQXQDUYRThsp27XLZU0K9R23%2BNd6x0yxw8PDip2lL26P4zoA78KmBOIZEIDmLaMZEsSnDT3cMfnEHAc%2F7Zpk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f93a989fabc-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Fri, 10 Feb 2023 00:39:54 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip
braj.spidermanmobile.com/css-zone/facebook.css
172.67.164.88200 OK 848 B URL HTTP/1.1 braj.spidermanmobile.com/css-zone/facebook.css
IP 172.67.164.88:0
Hash 6ccffc97f012d894133f797feced6435
b9ed09fb87d34d862c99b945207681d26eaee6e3
194e8028d5c92ec122b0ab14a9412f8afad57a2552dfef0f4f374359ee684421
Analyzer Verdict Alert openphish Tencent
GET /css-zone/facebook.css HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:54 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Jun 2022 05:52:08 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qe9tK76wlxxejExOljcLt0prchVNoVAfwsIVG16hCBsTZiQUqcnqF1a6QTujn7HqT9b5GMZZhZT2HZTZ2RNBKQrF6jHgQHDJT61fl4RmNpZdzQ1kR%2FXl9VCf82RhcUNabWLCJw38frjhFsM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f9168d30b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/js-zone/jquery.js
172.67.164.88200 OK 451 B URL HTTP/1.1 braj.spidermanmobile.com/js-zone/jquery.js
IP 172.67.164.88:0
File type exported SGML document, ASCII text, with very long lines (1757)
Hash 1abe5c025a16893ec52beb616bed7b16
9d69e05eeeecfb6f358bfa69e460168a7617f585
1dfae3417846d2cfbd7957679b81e8021a51949912e10b3101c71ca2f9d5dcb3
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /js-zone/jquery.js HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 21 Apr 2022 23:48:20 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E6tl89bQW1lIZAsjuK6rDXmI1WhRPs9xW4A5R2fG0AOW6%2B56AEMnYQ8JMfMh%2BHLFc2J%2BzXX5DyzaoBfyGFb%2F6JmzN0dXVxNDwzT4BPBdiq7KiVNNVvXnBqTvl%2B1h4oQC8AD2PBdwWLoJ6AM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f916cbe0b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16419
Expires: Wed, 08 Feb 2023 05:13:33 GMT
Date: Wed, 08 Feb 2023 00:39:54 GMT
Connection: keep-alive
i.postimg.cc/Sxyy8Kzz/footer-socmed-6.png
162.19.61.80200 OK 4.3 kB URL HTTP/2 i.postimg.cc/Sxyy8Kzz/footer-socmed-6.png
IP 162.19.61.80:0
File type PNG image data, 184 x 140, 8-bit/color RGBA, non-interlaced\012- data
Hash 27eb10858d473bfd39cca3251fe35a26
f472c341ec3696a0c7bb85799495995ff72f941f
e0e93e88b46229223de82294608854d6578f0ade6f696b31f830cda37aae9b0e
GET /Sxyy8Kzz/footer-socmed-6.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 00:39:54 GMT
content-type: image/png
content-length: 4316
last-modified: Wed, 13 Apr 2022 13:57:35 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/YvcfCqz7/footer-socmed-4.png
162.19.61.80200 OK 15 kB URL HTTP/2 i.postimg.cc/YvcfCqz7/footer-socmed-4.png
IP 162.19.61.80:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 396ddda13117ca63c10d66afc75b045f
a3e197f3f99566f72693c8ccbe722a2430dfe1dc
db2e36d4d529976cb7f6f07619bdb7c8918e9f35a705b7db99074c427b4f705e
GET /YvcfCqz7/footer-socmed-4.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 00:39:54 GMT
content-type: image/png
content-length: 14747
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/w7RQzsJF/footer-socmed-5.png
162.19.61.80200 OK 9.8 kB URL HTTP/2 i.postimg.cc/w7RQzsJF/footer-socmed-5.png
IP 162.19.61.80:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 010d177128984148483764afcbe38b8a
a46bdb7a79807f57863ac5bdf51b769d1e8e97f0
22413a2dd1f4a4d55c29a714d5e81341264eda2dde1113562c48682de1770d91
GET /w7RQzsJF/footer-socmed-5.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 00:39:54 GMT
content-type: image/png
content-length: 9840
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/bdB94RGs/footer-socmed-3.png
162.19.61.80200 OK 8.0 kB URL HTTP/2 i.postimg.cc/bdB94RGs/footer-socmed-3.png
IP 162.19.61.80:0
File type PNG image data, 180 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash e9c30eff69db680e38d3e93aea870280
7958cc94ac08dde6f5ff38d4d220c376a66a697a
96e9a2cfe21342fb25fc23d598a500f1102b94f79478a8834df013bf95bc7007
GET /bdB94RGs/footer-socmed-3.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 00:39:54 GMT
content-type: image/png
content-length: 8004
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/jnLQLD1x/footer-socmed-1.png
162.19.61.80200 OK 7.0 kB URL HTTP/2 i.postimg.cc/jnLQLD1x/footer-socmed-1.png
IP 162.19.61.80:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash cc467f5a6a7ec0c41a34f4400bfa8473
025aa3fbceba7087d07e152b822820a77fca7d37
72271585bdd425610dd93695a3150c3820ab3a26fb389cafe8ccc67ed8b8690e
GET /jnLQLD1x/footer-socmed-1.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 00:39:54 GMT
content-type: image/png
content-length: 6953
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.postimg.cc/Thwcks3z/footer-socmed-2.png
162.19.61.80200 OK 12 kB URL HTTP/2 i.postimg.cc/Thwcks3z/footer-socmed-2.png
IP 162.19.61.80:0
File type PNG image data, 180 x 148, 8-bit/color RGBA, non-interlaced\012- data
Hash 0d76c6316716e7672112fa057d0da131
4a9f7f2d17431734575380c07d92564957f02c46
62dec982412037eb2b025b01c2438385b53354c2a6089ef9102529ddcb37d630
GET /Thwcks3z/footer-socmed-2.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 00:39:54 GMT
content-type: image/png
content-length: 11789
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/nav_download.svg
23.36.76.227200 OK 485 B URL HTTP/2 www.pubgmobile.com/en/images/nav_download.svg
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (999), with no line terminators
Hash 105955f14143a23be57cadef8e91950e
98cc1e76113b4b2a2a77805bb1f1d6b364344d88
b85bdfd2887c4fe7681cae97896e604e74d27f150feb49598e1e7efebd3c6fc2
GET /en/images/nav_download.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:17 GMT
etag: "62387c81-3ef"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 08 Feb 2023 00:39:54 GMT
content-length: 485
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/nav_language.svg
23.36.76.227200 OK 675 B URL HTTP/2 www.pubgmobile.com/en/images/nav_language.svg
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (1107), with no line terminators
Hash 77e7b8dcd13159c59219706782b1a897
a3c73409a8e9841a00b771d96ce6cb0ce76d222e
4f61e0a210a58bdf43f8a93bf658275291e6a16979f8090c0731f06b6fb3c5a4
GET /en/images/nav_language.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-45b"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 08 Feb 2023 00:39:54 GMT
content-length: 675
X-Firefox-Spdy: h2
braj.spidermanmobile.com/css-zone/animate.css
172.67.164.88200 OK 4.7 kB URL HTTP/1.1 braj.spidermanmobile.com/css-zone/animate.css
IP 172.67.164.88:0
Hash 0ddbd5b846bb5859630d16b3bc990ede
4cf068cfd4e70a216df3af2c8320a07ae9d642b5
9d3bd3d01b937e6bd482f1de2a9978f14fa132cf6d36784cc81f83d446ede16d
Analyzer Verdict Alert openphish Tencent
GET /css-zone/animate.css HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:54 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 28 May 2022 01:12:30 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hpwsfw66gfb9M7CHG%2BUp8%2FyPNFAdX3%2Bu1jZXZ%2FxYQD94h2nydQNMRhsb%2BX8HA9F6EPgrl8ndMJQf6Z65lr6uI94QV%2Bu5uVuyysMmEbDtwqqBUZHZ3dWeKGibYBUyl3mut054ieYfqBzFnPE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f916c9a1bfa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/js-zone/main-zone.js
172.67.164.88200 OK 345 B URL HTTP/1.1 braj.spidermanmobile.com/js-zone/main-zone.js
IP 172.67.164.88:0
File type ASCII text, with very long lines (316)
Hash bbae78527e745cb146a632161f3012f4
c882ece393db1074d14ce6f7a31bbd1a75b063f2
c14640cd35d53dc1c450da2a35643dbcaf9877fc7818bc796580801c80c64922
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /js-zone/main-zone.js HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 21 Apr 2022 23:48:20 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5zpIOye3vohOksZJMxt462hi%2BeNG%2B8TjtLommhc7FJNFRsEmqAt42oDinNpJ2uP7n4DQWsVyPqDdGNmp3Dg%2FrpRo9wrVqn5wVM2VFkrZZb48rSHAW3j4GuNDmWbeOEdwIV5iJ0OzGvsTkRc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f9349b4b511-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/index_files/css
172.67.164.88200 OK 62 kB URL HTTP/1.1 braj.spidermanmobile.com/index_files/css
IP 172.67.164.88:0
File type ASCII text, with very long lines (1116)
Hash 755df17a408beddb747e36f27ae4dedc
53daa61ef477c0badec68fa8942cb5ffce0c38b0
a2db023c6c27693f044211498c952a94f002c75b80926bde95c24d5dbab187f4
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /index_files/css HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:54 GMT
Content-Length: 62268
Connection: keep-alive
Last-Modified: Thu, 21 Apr 2022 23:48:20 GMT
Accept-Ranges: bytes
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8OsPGffjixl7lPgHOwRCyTVZCNvAVxnlnad4H48E2l9vuFrkSmx8OiKIiUAbN5ufoOJl694WbPvuu3D24xM40sw4ihWBKI0neidIBmaduW6NYzYutJhLPpC5sW70jdwO5vqmwCDp8TSajoE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79604f91682cb51e-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/js-zone/showHide.js
172.67.164.88200 OK 271 B URL HTTP/1.1 braj.spidermanmobile.com/js-zone/showHide.js
IP 172.67.164.88:0
File type ASCII text, with CRLF line terminators
Hash c1e6c83f41b89d5d1ca66813689c3789
cbd43e7839e1f890a36a44f8285908474d005592
d103f1797e8caa2616a4e722460c879a8722de36b8490989088c0326850ed044
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /js-zone/showHide.js HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 03 Aug 2022 19:48:42 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K8A88%2Fez3HVHzS0t0ze%2FSoqmwa%2BS%2FqhDgZSulGdt%2B1%2BI0IyGEbVGXemy6MLzOzbdzgfD3xRo%2ByO5zVpzgJ2EyVfJ9TU35w7IryncBe6S91hcAxL9zvmUgWb8haDEhhk6DilJN%2FcB%2F1lUEc0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f940dad0b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/index_files/gift-zone.js
172.67.164.88200 OK 633 B URL HTTP/1.1 braj.spidermanmobile.com/index_files/gift-zone.js
IP 172.67.164.88:0
Hash 36c66a5858739e6e4292644a69881502
c88534cd8a09aab21ef15eaee7ca3726584b0eb3
585e9d93d2a5e5eb3c781272abe9f16ded59439a48b5860ec4a321c991ac48d1
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /index_files/gift-zone.js HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 21 Apr 2022 23:48:20 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZKreapN3V8qZhwgMqkNFdNpPxow8P1mKyfk5d9Ct5gBqj0G9BPW3RhE9rgUzrNKdzVV1JXo%2Fh39TBzng%2By9OWPYxCBfBSZt%2FpOCupVksP%2Bzfxf2GXcUr%2BAbztG4I9lmtcI8NlZT7dwaJhNE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f93e9bf0b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
35.165.1.70101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.1.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Hs18HFnjknizWHD6QDm+aQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l84Cfncm7FdLjElTyJJMSPVmK0g=
braj.spidermanmobile.com/js-zone/slider.js
172.67.164.88200 OK 293 B URL HTTP/1.1 braj.spidermanmobile.com/js-zone/slider.js
IP 172.67.164.88:0
File type ASCII text, with CRLF line terminators
Hash e7c0f0b1dbf949ebfd06432d8b529b86
dd839b1001170efc745d2943b05d7f82bbcd16c0
6294b1a0ee498d07aa784f77d325e696d13f01759a5715532b7928d38d662261
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /js-zone/slider.js HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 12 Jan 2022 05:59:22 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q%2FsZjuLMVXuSoUuxhO%2Flcb1g0JGtJPa9tVowLwnTO%2FteHw8E0JaYu6S23YHxcA5H4GmA4M2E0QgQsQUTzHpLbj2sxILN5%2BoUCHzdjLxlg4GUNPs4f58KBpe6oXTam47M2Uh3YDXahb2CBeU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f95ce811bfa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/index_files/jquery.min.js.download
172.67.164.88200 OK 30 kB URL HTTP/1.1 braj.spidermanmobile.com/index_files/jquery.min.js.download
IP 172.67.164.88:0
File type ASCII text, with very long lines (65451)
Hash 7554700001b8185d78b27d640a697358
1975f1bc02914481d864207ed5ce7d1a3217cd65
5525c62b3ecf3ace154d5e1eb5a3b75904f98cd6371e2a6e7213600515ef99f6
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /index_files/jquery.min.js.download HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 21 Apr 2022 23:48:20 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZTwIq8YeYMazP0%2FSz0XfqFL2E1eLiqAAGMb%2BgWbiYwlXIRv5yWunf7jl0gqVYxR0py9Q7eHJstn0Eq0EobAzr7daqQ1w8pyC4ccTWX5LWXDDU8TBKGFnxJnvNkNuaKAJm6sCagI8zK6Nwu0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79604f93a98cfabc-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.pubgmobile.com/en/images/nav_shop.svg
23.36.76.227200 OK 526 B URL HTTP/2 www.pubgmobile.com/en/images/nav_shop.svg
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (985), with no line terminators
Hash ad0548f5478991acc360e6464247e82a
40e3e327eebfc39a8e45b1aa46b725d65390cdcc
6654577abe5f4be7b3f9089fa76e5f746c8d0f5c7eae1cc8202a94fae1193fe3
GET /en/images/nav_shop.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-3e1"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 08 Feb 2023 00:39:55 GMT
content-length: 526
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/nav_menu.svg
23.36.76.227200 OK 426 B URL HTTP/2 www.pubgmobile.com/en/images/nav_menu.svg
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (876), with no line terminators
Hash 76f5753e4fe160785df31ef342ada1c1
a78cc3e318b79b7fe5e7eb8df11683706b518e8f
52c48564638e7f165f23fae7f76b72d07905f2179ff659b939bfab7ec8b82a26
GET /en/images/nav_menu.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-374"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 08 Feb 2023 00:39:55 GMT
content-length: 426
X-Firefox-Spdy: h2
braj.spidermanmobile.com/img/header/3.jpg
172.67.164.88200 OK 91 kB URL HTTP/1.1 braj.spidermanmobile.com/img/header/3.jpg
IP 172.67.164.88:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x608, components 3\012- data
Hash c732b777414452e06265745974a71035
fb74bdccccdc923c098d58205aac54ab8485469d
b5ecbc29b0470ab73a5e00ea14fc658476883d2be1d94a6e357758fc9c14b202
Analyzer Verdict Alert openphish Tencent
GET /img/header/3.jpg HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:55 GMT
Content-Type: image/jpeg
Content-Length: 90596
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:55:50 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uRwnE%2FMBOk%2Begvzoe0Jql4VkypQvxAysUN63dD5fgxDe38bZAv96XdgMpkdt0GsGCzSonqGuvKTpRP6lPkr5AaEmjKFot1X2Y4j7MKKZ9MxhRTDzCeI2ZsdbAJ0OSRamPIN7rVFsCkHLRGA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f961b43b51e-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/js-zone/zero-zone.js
172.67.164.88200 OK 360 B URL HTTP/1.1 braj.spidermanmobile.com/js-zone/zero-zone.js
IP 172.67.164.88:0
File type exported SGML document, ASCII text, with very long lines (612)
Hash f5f344af95f2ea78322ba0231c998ad2
2cba1787df5a060739fc914ce979b71ec649b038
b3c218d6b3ec189d95b6b97ec73d66f4665101a0cad0709753df919c520ba205
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /js-zone/zero-zone.js HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 21 Apr 2022 23:48:20 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XQBwhvstpT95D6ir3lx6tE2fu4UWpvzmKpcCm2qNtYKPt7iq5BbQRiC%2FSCFaFLh0JlTgY5GJLC%2Fcu9zuH%2Bm8k01xB9WBu1T9yR%2B%2FfRqfID3ztgf6LBU0Gq3jJ1%2Bf5UAj1FfTO3MFJl0jjas%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f964b0d0b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2325
Expires: Wed, 08 Feb 2023 01:18:40 GMT
Date: Wed, 08 Feb 2023 00:39:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2325
Expires: Wed, 08 Feb 2023 01:18:40 GMT
Date: Wed, 08 Feb 2023 00:39:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9c2a9eee923b84d4e06438a8b2acaff
520b122e3ce52220af153fee26bb7067283f9075
9ff4236fdcd05210a9c8bb48ea68179e142b1b05c8b19dd66282590dff69fa22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10058
x-amzn-requestid: 94374454-1e89-4c43-895b-0a90f39b851d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O5vEgcoAMFctg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c50a-0bf11cad4b0818c36188ba91;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1R4SRNvqhRHbrDZsGB06NJbBXf8WRgJEHmXTbop8pqf8etTJSlmQwQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:06:05 GMT
age: 9230
etag: "520b122e3ce52220af153fee26bb7067283f9075"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwSN-ztVJgRfu3bFIjYaVYV8Cnx77j1ugkRjqhRtRXdPju7AhEMg-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:15:46 GMT
age: 62649
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5abcabc9-1cda-4d86-8630-67943159604b.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5abcabc9-1cda-4d86-8630-67943159604b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb0e725719ac378134b01b6473a6581
a8a1780c88e8ae219048bed28ecfbd8019d9af35
187d4e83edc0af857334f84bd6853234193d4654d06c43367f39b4e125defe08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5abcabc9-1cda-4d86-8630-67943159604b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6679
x-amzn-requestid: 97c19ad5-c127-4dc1-b529-1eca84645316
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f59MzHgloAMFwow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a8b8-79d6b8d31b69153d4929b7b7;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:14:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x_tr-xummuF51PvAM4y3DgvLWuJOwxgquKO8baQfcoN6ta5M3ll7ug==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:49:38 GMT
age: 60617
etag: "a8a1780c88e8ae219048bed28ecfbd8019d9af35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 33b061f03be149fea0df63b42a8ec226
e5e491c6ef8b6234450a34ee5df28b9a58a8ad43
a5970bbb40be173878cd2e920bd1a6ed27775fbdc222bb66ccbc5969984882f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4269
x-amzn-requestid: df152b3a-fa15-4dac-96f9-41b9ea8e5136
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkQH5PoAMFl1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c481-63636a42419209fb0c17eceb;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ViawdcUij4_pKnUmO34Oaqjmbtv19ModMaku0MWYTHDeLCR1ikzB_A==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:42:03 GMT
age: 10672
etag: "e5e491c6ef8b6234450a34ee5df28b9a58a8ad43"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f31c82179856e39ee5fc43d7f0b685
5b37f807a19ffc80c0b9334e6d24d5bb717496ce
c099c91c6f2125a8a89ee6e9dc0e37e2c2c9914adadb2c8b77795063baa62037
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6805
x-amzn-requestid: 9f067f0c-2991-41ae-8dd0-5719a5438abc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PHwEn4IAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c564-730d01807c13643373d64897;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: eSU1CSydRTodwnN5DNTXbYD3d3kYFCHiCvPRq5DZTTDSTH2L-GV_1g==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:19:17 GMT
age: 8438
etag: "5b37f807a19ffc80c0b9334e6d24d5bb717496ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25fb37d8b072e47aae74933481fb9418
b073d213a6a7939efed7ee5ef62a5548e00082bc
59a9c61013b3a4faab6f1c578f45bb87397d2f9e7975ae58e53e2c4e4a791da2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6177
x-amzn-requestid: 1b73f423-5a28-48f6-9ad1-9e42c38bebc6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f-tCnF09IAMFt4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e28edd-294711995de49ebb380b4ca2;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 17:48:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zr0wkfqHvE3x4qvNObXp9uIF_oXpoZuHKgyboR5ezBuiHDdxFPpswA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 18:09:39 GMT
age: 23416
etag: "b073d213a6a7939efed7ee5ef62a5548e00082bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
braj.spidermanmobile.com/img/header/2.jpg
172.67.164.88200 OK 66 kB URL HTTP/1.1 braj.spidermanmobile.com/img/header/2.jpg
IP 172.67.164.88:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x608, components 3\012- data
Hash 1b4fff69fb65abcb63da29a2891ad8af
3ec52a057ecf9f9276dd3ba7e805ff34f67e65be
aaa33f9f0ab9aa3a9af2a4038cd9f0e239378cf2b5567fcac97fe1a6b6a23070
Analyzer Verdict Alert openphish Tencent
GET /img/header/2.jpg HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:55 GMT
Content-Type: image/jpeg
Content-Length: 66004
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:55:50 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ABUbI1ALiFAc7Xw5jSDypvbcAP9OWI2VrL%2Fr3ZtFcrVmR2QpMsp5vKSZ8W%2FTRtcUasd8kCd31Ppo8eYkw7N6VAXRoUDdLm3U6AW83Z4jF%2B5DdGjtA7eMFh20%2Ff8aWRzM7IGUsxLDUSX%2Ba5s%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f961b56b511-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/twitter-text.png
172.67.164.88200 OK 4.3 kB URL HTTP/1.1 braj.spidermanmobile.com/img/twitter-text.png
IP 172.67.164.88:0
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Hash fef946b8bba756359e2a1e87ccd915ea
acc364946077b0e32b2343474ce4066ad3ee524c
1be5d05ce6faad469f7f9c5a5879f2d9f8d267b60eb394e92c19217268bcea8f
Analyzer Verdict Alert openphish Tencent
GET /img/twitter-text.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:56 GMT
Content-Type: image/png
Content-Length: 4298
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 01:28:20 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V2ry7GiYkuFYHahy0E8biuKp769QiULoTnWj6WZkRiVt5e5rp9brPGbqmwjLzgE775%2FP0kDSUFO3CniZUjCvwpLFK1Q9VIqdX2T%2FRg%2FmF%2BVIsJtglnkjnCCRo742DB6JNzyH819zcjHWl0s%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f9eb860b511-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/footer.png
172.67.164.88200 OK 23 kB URL HTTP/1.1 braj.spidermanmobile.com/img/footer.png
IP 172.67.164.88:0
File type PNG image data, 1280 x 189, 8-bit colormap, non-interlaced\012- data
Hash c6b56cf1fbbb63620e8558afde759e96
4d50888d8a17c2dcdbd05e6068ca4b4b587c7f29
34f7601064bb7cc3cce9ba942dd92d7f53889c703daea37bf34e1e71a1de03f8
Analyzer Verdict Alert openphish Tencent
GET /img/footer.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:56 GMT
Content-Type: image/png
Content-Length: 22718
Connection: keep-alive
Last-Modified: Sun, 02 Oct 2022 01:58:54 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IG1bsLYppHv%2Fxy4GN1kX5erF1R82Y6n%2BttOG58MYEbgIK%2FIfXxmwc6Z8BHn5HIbA%2B3V2oYL7As%2FWhKAWabMZDZT76nJaUEyrs2g8mZE2gAx7KQqd1lrbOKX1Hf3SbqmlI5Uc4smGiK%2FbmWw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f9e2f75b51e-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/js-zone/alert-zone.js
172.67.164.88200 OK 17 kB URL HTTP/1.1 braj.spidermanmobile.com/js-zone/alert-zone.js
IP 172.67.164.88:0
File type ASCII text, with very long lines (64301)
Hash e8b74c6795976bb00b39192913be9a32
dda8e1b9a91bfe6ddca677812c4968291e28786a
00da874465ecd5632f1b7461cf7f65f9aa53bce8408b23775d70f08d6a963322
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /js-zone/alert-zone.js HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:56 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 21 Apr 2022 23:48:20 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uV1CZfsUzlSQnt2Wh9%2BRKNHPVQZedZTFZPeQdpJTlp%2Bc6FOT72ylzB%2FdvzEkqDOmViERmjTD6i%2FfGe6eaHccrk5RX2%2FfktCIjKdb7Rq1bChIVfMzpreL78Iitt%2Bc96QUZ4ALI9Qfa1URg%2FI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f963e850b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/facebook-text.png
172.67.164.88200 OK 29 kB URL HTTP/1.1 braj.spidermanmobile.com/img/facebook-text.png
IP 172.67.164.88:0
File type PNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced\012- data
Hash 74190b93fc4f5d88f0c8e6411ba20bd8
89ce2ecb660a90b8e6ed1b335443d7767c59f28a
092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401
Analyzer Verdict Alert openphish Tencent
GET /img/facebook-text.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:56 GMT
Content-Type: image/png
Content-Length: 28789
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 00:26:26 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vawfmyv%2BhNxFrPD7%2BJmrZKdIihYOxVkslq1U%2BnbZ0bYKQkDYMNhxLPRqn7ctBZ%2Bye70%2Bw9oALZBV0Iqh%2B96JYL2O0%2F0%2Fl3hlJm%2Bvjk7xFJ6qgZaDAJ7TuZkWUpfraZn4ci6SGxcVuyki%2BaI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f9e29e61bfa-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/icon_logo.jpg
172.67.164.88200 OK 43 kB URL HTTP/1.1 braj.spidermanmobile.com/img/icon_logo.jpg
IP 172.67.164.88:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x500, components 3\012- data
Hash e19b94c83946e01dcbf6630235ffc826
b10fa66beca8c3f7fc5debbee58d30d08d7b32f1
0f6bafb0af062e53f14fea41c8888038c5700aeaa41b6ac5523f79d583973670
Analyzer Verdict Alert openphish Tencent
GET /img/icon_logo.jpg HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:56 GMT
Content-Type: image/jpeg
Content-Length: 42821
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 23:08:18 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dPNxaR5FIeAE%2FwH5JOoxYp0jojidyLHFonWi04buT0cKAFbTOu6d%2FTp9hO67MhhQ2HggPb%2BdyuTO62hErFCw46QZbM7qhpkxZk7FE0JQ0xTxz5t3cvmi5mGmRRgoObuiR7oGCvUGL1jrKZ0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f9e2e8e0b65-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/seseselow.png
172.67.164.88200 OK 88 kB URL HTTP/1.1 braj.spidermanmobile.com/img/seseselow.png
IP 172.67.164.88:0
File type PNG image data, 1280 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 6774f33254c7f07a7763bd503b7c918c
9e212fcefaece30889f0aad36e0ead3a41ceb4fe
e072b60dd0fb713c703bf0496b6bc130c8c9653a44746cffb2cf854c090334b4
Analyzer Verdict Alert openphish Tencent
GET /img/seseselow.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:56 GMT
Content-Type: image/png
Content-Length: 88464
Connection: keep-alive
Last-Modified: Tue, 01 Nov 2022 10:40:44 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YcpNjvRFlOpSa0l2exMPXo%2F6Sg9ksMOtPMAuyLe0h5tjP4w4PTYK12z0hNzgRiTxT4Jjs17Zvfjkduj0vTbsoglshEvZ2tdsRXxyOCLORTtK%2BmhAiUtB7P%2F4HL0fpw6nDFFdGUiHUV1IMUs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604f9e2c5dfabc-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/css-zone/zero-zone.css
172.67.164.88200 OK 989 B URL HTTP/1.1 braj.spidermanmobile.com/css-zone/zero-zone.css
IP 172.67.164.88:0
File type ASCII text, with CRLF line terminators
Hash ea3925ee11dc0b945ce6738bc6d1e4d1
a237d5c91015a47362accfab2ac165119fb0ee14
a1977a69f699deceda3722099336b96db8101dd185cfc876d70a25db557cf51b
Analyzer Verdict Alert openphish Tencent
GET /css-zone/zero-zone.css HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:56 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 07:11:34 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dnaHun6r10kO1xGlNJKCOIB%2B98vkJEk19264mV59%2FOe5IurYH%2BP4cAUzcg4atP%2B6Fm6QMvQDsEk6cKuHyX9vW8IfKsK1ZLuDARTzlUrMotXDormindg%2BJrx0wwP4%2BL2I%2BbTtXX2C6Xu0P5M%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa28da3fabc-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/css-zone/style-zone.css
172.67.164.88200 OK 5.5 kB URL HTTP/1.1 braj.spidermanmobile.com/css-zone/style-zone.css
IP 172.67.164.88:0
File type ASCII text, with very long lines (411), with CRLF line terminators
Hash 846967a7686df6432a59f41507a798ac
a8a0acf240a621b9a0afecbae3dc614bfbab6449
73ed694d014906609d10be0c67d47126258140d91ea77f7bd4a8f7868357c464
Analyzer Verdict Alert openphish Tencent
GET /css-zone/style-zone.css HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:56 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 09:56:10 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YXa4jjgRKdjJ%2B72QyRQsmBEtnoNF2%2BJRq2ZMTZHOSMjbX4cd08SDhJuaGpFotNejyCwmUtWAvkMuspLER3ECUTUSU0OdJkruuXgfVzdrkavjyCKFz75Mvfp9vcp3rGgrU13FQBqdYdB3QZY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa1efe40b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
i.postimg.cc/02KwtTc7/footer-bg.jpg
162.19.61.80200 OK 12 kB URL HTTP/2 i.postimg.cc/02KwtTc7/footer-bg.jpg
IP 162.19.61.80:0
File type JPEG image data, progressive, precision 8, 579x800, components 3\012- data
Hash 27b8ceba13cb26a4ac6951cecdd4a5d3
accbec4f1b6038f0bcd2032da80c2ee342033d2e
d1740f2a847c3b67a1071442fe2af27298bca56ab267e90ea8aec3d4e9b9552f
GET /02KwtTc7/footer-bg.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 00:39:56 GMT
content-type: image/jpeg
content-length: 11651
last-modified: Wed, 23 Mar 2022 19:15:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 00:39:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
braj.spidermanmobile.com/img/logo.png
172.67.164.88200 OK 50 kB URL HTTP/1.1 braj.spidermanmobile.com/img/logo.png
IP 172.67.164.88:0
File type PNG image data, 1074 x 800, 4-bit colormap, non-interlaced\012- data
Hash d2eba90e2876318a2a6e88ca9c3dcc5d
7efa230be0d0ff0d26cee718d8aa579e7595c14e
a2245e7e96fdfde4e68615f3b224d83473ab45d215681c5a265c53915dfc627b
Analyzer Verdict Alert openphish Tencent
GET /img/logo.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:56 GMT
Content-Type: image/png
Content-Length: 49773
Connection: keep-alive
Last-Modified: Tue, 17 Jan 2023 23:08:18 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kTzj8ED6PDHDeR8ZUq97Ora2noOsgyNDdG9UvGLabalUj5klhx7%2BS3RHpKcmuxKWLzFWtZC32J1%2Fa6ZnUEHI8b%2F%2B7TVvCKj1PAildui56pZeRRSx5cOGyI4VTjlF6Yemn91cxuuVh1AQErY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa139a8b511-OSL
alt-svc: h2=":443"; ma=60
fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13324, version 1.0\012- data
Hash b4082c888eefa2dca3fe2c9d46a87180
05aeb6c58175f659fe59eaca5a9d3735dd0530e3
352ad1513eeaeec51060f01d5bed32345862ec4d9c0802b81e0a47885951e4b6
GET /s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://braj.spidermanmobile.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 21:08:59 GMT
expires: Wed, 07 Feb 2024 21:08:59 GMT
cache-control: public, max-age=31536000
age: 12657
last-modified: Wed, 27 Apr 2022 17:05:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
braj.spidermanmobile.com/img/header/1.jpg
172.67.164.88200 OK 66 kB URL HTTP/1.1 braj.spidermanmobile.com/img/header/1.jpg
IP 172.67.164.88:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x608, components 3\012- data
Hash fa126ba6dca0f366abebde4047f04ff3
5943f1e047663cab7755e1320d918f31d0708e7f
1f3820db44e34481f10270a3a3d078eae30a41420c371602d8d19bcf066849ef
Analyzer Verdict Alert openphish Tencent
GET /img/header/1.jpg HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:56 GMT
Content-Type: image/jpeg
Content-Length: 65468
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:55:50 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gMsJRNbKC4bOpXG0WYY8D1Sf9sG2%2BUy7hYUflEEuxrVc5qnZon8oRvvY2w8F1EmDNl9d3RRF%2FAOKbIsqI2Yt7FTjtBbXh1An4Qp%2B1Z%2FSippOW78K7KW54%2FTsDB06UY2sYKU0pEYo5oF2vSA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa17922b51e-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/header/4.jpg
172.67.164.88200 OK 74 kB URL HTTP/1.1 braj.spidermanmobile.com/img/header/4.jpg
IP 172.67.164.88:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x608, components 3\012- data
Hash 4bfb286c9225d41ffc61cb084b23a5c8
795f5ef321852be0d4973a9249490a5e832ebd56
d0f893f37a59a2907678f001c6d23ff9d8fcebbe9fc29571e77f38a740ef42c5
Analyzer Verdict Alert openphish Tencent
GET /img/header/4.jpg HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:56 GMT
Content-Type: image/jpeg
Content-Length: 73691
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:55:50 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F1DiJXf%2FdxRnS7W1C1lpqb3uZxkgk0b7tZluCOeCAHOTb2Lc81WTeIjh5557bjAG%2F4ZesSplg1kLZE8zwGr2nMOxsTKHX6k2I24epQrtWtHFrpQNTGHFNL07cx5xAW9XMFBOeU68tFCZYlo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa17c480b45-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 00:39:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Teko&display=swap
142.250.74.106200 OK 31 kB URL HTTP/2 fonts.googleapis.com/css2?family=Teko&display=swap
IP 142.250.74.106:0
Hash f59ccf7fa5a7f194379bddd20dec3b4e
002dc1cb0b320bed5a78c465a67f19855230cd4b
ce93e8907af561ddf98481b3dc55d81dd9d8f007e8c4b65a26abab653bfef76c
GET /css2?family=Teko&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 00:39:53 GMT
date: Wed, 08 Feb 2023 00:39:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16bfa87b9bb0a232eb368c9019603caf
44ab5ab6b4c0ff13aa05bdc6490c0413579a2732
3aa04ee1d10b9d7108e0876c293524dce9c81b29c61695d34130e3eae69e8b43
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3AA04EE1D10B9D7108E0876C293524DCE9C81B29C61695D34130E3EAE69E8B43"
Last-Modified: Mon, 06 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9197
Expires: Wed, 08 Feb 2023 03:13:14 GMT
Date: Wed, 08 Feb 2023 00:39:57 GMT
Connection: keep-alive
l.top4top.io/m_1725u5z7i1.mp3
65.21.235.194206 Partial Content 20 kB URL HTTP/2 l.top4top.io/m_1725u5z7i1.mp3
IP 65.21.235.194:0
ASN #24940 Hetzner Online GmbH
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Hash ee5b5d12064ae26f839b882edb33da62
6fa93ef00f294eec4ef05276e81813db1e95e346
4bc5852e5cec62ceab9260f712961f59609868151e01b63e7b7cae2b00efed54
Analyzer Verdict Alert fortinet Malware
GET /m_1725u5z7i1.mp3 HTTP/1.1
Host: l.top4top.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
server: nginx
date: Wed, 08 Feb 2023 00:39:57 GMT
content-type: audio/mpeg
content-length: 19781
set-cookie: klj_40d147_downloads=kh51z; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Thu, 09 Feb 2023 00:16:37 GMT
last-modified: Mon, 21 Sep 2020 07:16:33 GMT
content-disposition: inline; filename="open_reward_tab.mp3"
etag: "5f685351-4d45"
expires: Wed, 08 Feb 2023 02:39:57 GMT
cache-control: max-age=7200
x-file-id: x34392023x
content-range: bytes 0-19780/19781
X-Firefox-Spdy: h2
a.top4top.io/m_1725zobal2.mp3
51.159.64.45206 Partial Content 18 kB URL HTTP/2 a.top4top.io/m_1725zobal2.mp3
IP 51.159.64.45:0
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Hash 70ded6b0b406f9710307bc35e221629f
7034ec2ff72c936255b04c0890ce8976599380cc
22e1575a06426f427b46598d6599c565e80ed3e937b1872b0d5d928bfe5b2d65
Analyzer Verdict Alert fortinet Malware
GET /m_1725zobal2.mp3 HTTP/1.1
Host: a.top4top.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
server: nginx
date: Wed, 08 Feb 2023 00:39:57 GMT
content-type: audio/mpeg
content-length: 17691
set-cookie: klj_40d147_downloads=kh520; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Thu, 09 Feb 2023 00:16:37 GMT
last-modified: Mon, 21 Sep 2020 07:16:33 GMT
content-disposition: inline; filename="close_reward_popup.mp3"
etag: "5f685351-451b"
expires: Wed, 08 Feb 2023 02:39:57 GMT
cache-control: max-age=7200
x-file-id: x34392024x
content-range: bytes 0-17690/17691
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/footer_link_bg.png
23.36.76.227200 OK 1.6 kB URL HTTP/2 www.pubgmobile.com/en/images/footer_link_bg.png
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type PNG image data, 560 x 127, 8-bit/color RGBA, non-interlaced\012- data
Hash 92ae645b6114492e8c1c5464d949466a
1d27f2644c0f5e899e9478c78136a9bc94131150
f1bd509f6032d31635a91d57de9428b83929221b854768c38c8f1643877a9417
GET /en/images/footer_link_bg.png HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/png
content-length: 1630
last-modified: Mon, 21 Mar 2022 13:24:17 GMT
etag: "62387c81-65e"
accept-ranges: bytes
cache-control: max-age=299
expires: Wed, 08 Feb 2023 00:44:56 GMT
date: Wed, 08 Feb 2023 00:39:57 GMT
X-Firefox-Spdy: h2
braj.spidermanmobile.com/fonts/selow.woff2
172.67.164.88200 OK 22 kB URL HTTP/1.1 braj.spidermanmobile.com/fonts/selow.woff2
IP 172.67.164.88:0
File type Web Open Font Format (Version 2), TrueType, length 22220, version 1.0\012- data
Hash 345579e8566a3dd6dc9feb5362fbe7e1
df075dd0c26e72fd7df19948f07904c1eaa72ded
1d0dfcc32b3be2bf3b3dbc371e9b7c5ce205f4bc6f7c8ce0226256cc7064c3e4
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /fonts/selow.woff2 HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:57 GMT
Content-Type: font/woff2
Content-Length: 22220
Connection: keep-alive
Last-Modified: Thu, 29 Apr 2021 06:48:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CTi83w20mlC6RPlkjwRTxoV4AQNXcf5Qy7y5mOAglosDPFwTPG3gWdy0qEdVVctDCYe03u59tLPV5bGudO2NwH5UlA0Uz47z7%2Bn%2BI%2BqmppZoezLLqsXsoHwycz%2FJuBYfRx2%2Fd1Kk7zaZ9sw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa4ebd4b511-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/bg.jpg
172.67.164.88200 OK 27 kB URL HTTP/1.1 braj.spidermanmobile.com/img/bg.jpg
IP 172.67.164.88:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 784x1399, components 3\012- data
Hash 51d62c89de4556584b1cc619c69b2a16
0edd0d8541964a1357ed2521344ef1dd4b3312a3
238c5e7c728ee2e13ac5c3d4643ef2683532cfbb18bf897a8e6a042940c38aac
Analyzer Verdict Alert openphish Tencent
GET /img/bg.jpg HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/css-zone/style-zone.css
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:57 GMT
Content-Type: image/jpeg
Content-Length: 27130
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:55:48 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5I8BVMxK83KDPHMwewsA0rbngLGLyNpSWBD8Tg69NKYNWeFOwL7wUSD825gE2IHUFALUhZkHf48yMphLIqP3FxxgGq3lCCOQRenEtGSbosp%2FmrsHEdHVKK0jCeCcFaL1NtlPmUwklOfTqHk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa54d910b45-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/reward/4.png
172.67.164.88200 OK 33 kB URL HTTP/1.1 braj.spidermanmobile.com/img/reward/4.png
IP 172.67.164.88:0
File type PNG image data, 480 x 480, 8-bit colormap, non-interlaced\012- data
Hash 141cbff0c6ea01e76635880cc4087eee
f50fc8aba1529ca97294e6acf0306f806bc572c9
b1c2f5ce12f8238f7e152db04c024e5049d6272abefa2735fa3405944c5c23bc
Analyzer Verdict Alert openphish Tencent
GET /img/reward/4.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:57 GMT
Content-Type: image/png
Content-Length: 33121
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 21:55:28 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nrMAEsvU%2FBTCZj1Mnn909yHz5cWyvZMFX4%2F2nLWT8RH%2FU%2FFSpQ4v5oTi8NEnBJhjeB9v%2Fc6ZBUkKElmyTF%2BRZ4sMkljfsY%2FsGkBF31hrb9ujFL58pvbhwrGXYQnB0c1LHDv%2BVDtQcFTj%2FOQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa44e26fabc-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/item-off.png
172.67.164.88200 OK 39 kB URL HTTP/1.1 braj.spidermanmobile.com/img/item-off.png
IP 172.67.164.88:0
File type PNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data
Hash 717377fd49afb705b2de8619245659a6
106d80955f38cc8082653a1acc249aa05f404795
3fab2772fc1d929d84a23821f82e172077f8b831a56cfa65b8696c6b1006e38e
Analyzer Verdict Alert openphish Tencent
GET /img/item-off.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/css-zone/zero-zone.css
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:57 GMT
Content-Type: image/png
Content-Length: 39084
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:55:50 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M9oMQX2bNDcp4x6AgCCHM2BcgKwvZUpdpK39%2FEamf7xxRRfA87MMGm3y3J9K%2FDZYahgeDRqr6AkZUGFZvs4O%2BrTEJubWPzb1IQO53ooOFJgLiheMhGPaAKyuCY5%2FSMuSns34Ax2x17MiwCY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa71d50b511-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/container.jpg
172.67.164.88200 OK 29 kB URL HTTP/1.1 braj.spidermanmobile.com/img/container.jpg
IP 172.67.164.88:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1000x900, components 3\012- data
Hash 7171d27114772b15daa78537f2bad932
dc232ffb0249e7d34a326176f06add9cbbbde713
19098188f4de617d98cd5215ea85fc31ac052073cd3935b30b313a9da44a21ab
Analyzer Verdict Alert openphish Tencent
GET /img/container.jpg HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/css-zone/style-zone.css
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:57 GMT
Content-Type: image/jpeg
Content-Length: 29439
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:55:48 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c%2FY%2FlRIhB%2B6Cq6q3oyUkdDHrWabtmzweNRTNt8HVtbalVBrXkoafn9XBhlz8AZQyBkRCxdllDCbOF4xgxtH8%2BIJ91zT6vwXpwVSeyDayn5aeJXd%2BN6vjedpthEbOuy3HvBNIw2Yn4gG4EW4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa52b01b51e-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/draw.png
172.67.164.88200 OK 58 kB URL HTTP/1.1 braj.spidermanmobile.com/img/draw.png
IP 172.67.164.88:0
File type PNG image data, 400 x 400, 8-bit colormap, non-interlaced\012- data
Hash cc326344a1ba1df861ad9476455d5067
e22613e9a195c4a56f0471a7f7a00c7544f7c236
b46ae967eee54913ebdc3f81418b5c5af1f1ce6526b7eeb8573153ef49b5e60d
Analyzer Verdict Alert openphish Tencent
GET /img/draw.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:57 GMT
Content-Type: image/png
Content-Length: 58119
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:55:48 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ey2tV3U%2FS3jvOwv8ZGx0S6hgywUQLBwLCGUuRz%2Ftp3fBrR0vBONrQJCftKshQuc0wKSC9SSUjsd7NHlkM8km9wY6KuovbxpPVF9j%2B8iHZb1zFZtDld5GJjEkUOnLNNjM5Kg0UZD7k1qggGc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa448d30b65-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/reward/6.png
172.67.164.88200 OK 33 kB URL HTTP/1.1 braj.spidermanmobile.com/img/reward/6.png
IP 172.67.164.88:0
File type PNG image data, 480 x 480, 8-bit colormap, non-interlaced\012- data
Hash 231f0d6a6fa7adbcd89ad1c20b115693
82019189d16ff8ca02e0b759f13baeccee662ff5
bbea5a94eda19838744b9432b0dcc032e4be09035a09f7c3f5a80068b11e0697
Analyzer Verdict Alert openphish Tencent
GET /img/reward/6.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:57 GMT
Content-Type: image/png
Content-Length: 33106
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 21:55:24 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rKW7kXKeuvZooAIPlaHdSWJFLHF5XuSfRtu9%2BCTGFw0HiiB0ctDUtPhJNTwpXgeY8Qz%2FPo99K2KPqZ%2FdeDe5Zzw8BfJ%2Fmzwt9cmnS7LJIvx7sXxZkU1Pmb1M9zNmOGFwJ9QzrjPs9kBXwag%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa87e0cb511-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/title.png
172.67.164.88200 OK 141 kB URL HTTP/1.1 braj.spidermanmobile.com/img/title.png
IP 172.67.164.88:0
File type PNG image data, 1399 x 380, 8-bit colormap, non-interlaced\012- data
Size 141 kB (141182 bytes)
Hash c815452f8243fe26166ccb5da0a2bd11
fef60e23cfeb02e35563ba99c92a7ecb3effc105
5054ee657ee1b3f8425c4579180ff1e1bb2a64e0d8d546a3421f598424b3e7fe
Analyzer Verdict Alert openphish Tencent
GET /img/title.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:57 GMT
Content-Type: image/png
Content-Length: 141182
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:55:50 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gqLyA3eyFrhSKYhmJ9pWVw0adrX8RISV4D8dxTIWGESwj%2F5oFZb0oB%2BP4%2BUzC2cMDkkcLEJrbMt%2FvS0OFG6niINs0W9G6XG%2F26EBHF6MPFk5gAakZ3wta0yTcf9QLyVwXUvteUq8p018owU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa57d161bfa-OSL
alt-svc: h2=":443"; ma=60
www.pubgmobile.com/common/images/icon_logo.jpg
23.36.76.227200 OK 982 kB URL HTTP/2 www.pubgmobile.com/common/images/icon_logo.jpg
IP 23.36.76.227:0
ASN #20940 Akamai International B.V.
File type JPEG image data, baseline, precision 8, 1024x1024, components 3\012- data
Size 982 kB (982437 bytes)
Hash b83d8d3e9beecfac081f4e742d27661c
448330670bef8c2ee17baf6d2410ca974341cb88
5899c82b2f0563679a9c1ee79b5b28f2545864d95c7627c1a70e36a2f034497d
GET /common/images/icon_logo.jpg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 982437
last-modified: Mon, 30 Nov 2020 12:10:45 GMT
etag: "5fc4e145-efda5"
accept-ranges: bytes
unused62: 8096267
cache-control: max-age=284
expires: Wed, 08 Feb 2023 00:44:42 GMT
date: Wed, 08 Feb 2023 00:39:58 GMT
X-Firefox-Spdy: h2
braj.spidermanmobile.com/img/reward/5.png
172.67.164.88200 OK 33 kB URL HTTP/1.1 braj.spidermanmobile.com/img/reward/5.png
IP 172.67.164.88:0
File type PNG image data, 480 x 480, 8-bit colormap, non-interlaced\012- data
Hash c8d124bd0dae2aa3a177fb08b26ce180
7885b5b5cd2af982ff0ef6af441abda524e08294
9cce189b13df0b631ad46d4f71e1802bab14f27461cb881802c1f30f13074669
Analyzer Verdict Alert openphish Tencent
GET /img/reward/5.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:59 GMT
Content-Type: image/png
Content-Length: 33272
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 21:55:26 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VzjvK%2BGkSasxfUJPcmY8EsBUqsewM5u7wOKI8Ybeib3k3fPpeADnjZFTXLTrnNpQmG%2F4jw1tHcLxbxIyMkuNq61L7X%2FCBnOeO5Or4jcThnf448ZQ3iQ8rkdccgawluVjLAg%2BO7leg8Xdj%2F8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa8ad52b51e-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/media/spin.mp3
172.67.164.88206 Partial Content 93 kB URL HTTP/1.1 braj.spidermanmobile.com/media/spin.mp3
IP 172.67.164.88:0
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Hash d79ba85640e089dabcc31377d3586363
9e114f0f2ae0cad5b464a6d14f3f3e91193b204a
c116089f76fcfac640d9077510d653c8efe84c308e3b163913b9193417bbc6a5
Analyzer Verdict Alert openphish Tencent
fortinet Phishing
GET /media/spin.mp3 HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 206 Partial Content
Date: Wed, 08 Feb 2023 00:39:59 GMT
Content-Type: audio/mpeg
Content-Length: 93347
Connection: keep-alive
Last-Modified: Mon, 17 Oct 2022 05:39:24 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Content-Range: bytes 0-93346/93347
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qcn3IkG4hfgslRFATGydv1RaJ5xUJMiD4XEYMEb1MqX6QcAqxvHChXPmJu79K3sVhf02CSiYqL08jOkEGLOyOYiy9O6KXfJOPHZ%2FW%2B%2Fd4kPwnzwfC55dqA7L1%2B%2FRdzUDsUYqSNicGD8u%2BdM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79604fa7cf2afabc-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/alert.png
172.67.164.88200 OK 91 kB URL HTTP/1.1 braj.spidermanmobile.com/img/alert.png
IP 172.67.164.88:0
File type PNG image data, 1399 x 371, 8-bit colormap, non-interlaced\012- data
Hash 3700e20cb86710cf968b86bf2b2ad438
3d1e70a8529b5e9ba1af5d056c22a1477ca42220
390cfe8fb8434fdfdb0ac6d277385d31ece0821ad74a8eb2f7e937e305cd4eef
Analyzer Verdict Alert openphish Tencent
GET /img/alert.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:59 GMT
Content-Type: image/png
Content-Length: 90694
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:55:48 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=67p5Fg6pskfDRrTP5I4Rj88eqA4Ynn9%2B3vhNtNPztedLks7T4S%2FZdTZmpc%2FrxFmsIy%2F144zaJOiLIYkfHllsVYF6Iu3FBB88H4JWWsRypZ4UD5uXKr7xRN8YsOaMR4OIMPo%2F78NMh%2BB4TlQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa77e580b45-OSL
alt-svc: h2=":443"; ma=60
braj.spidermanmobile.com/img/reward/2.png
172.67.164.88200 OK 38 kB URL HTTP/1.1 braj.spidermanmobile.com/img/reward/2.png
IP 172.67.164.88:0
File type PNG image data, 450 x 450, 8-bit colormap, non-interlaced\012- data
Hash f7badad665ad0768d01de045f601154d
600cac4d2614a0ea1a12e3f1bffaa5b0994d0782
8a55c2c38f8c3e206386990957e161f0873b564d22c9de07fe99387405c6867a
Analyzer Verdict Alert openphish Tencent
GET /img/reward/2.png HTTP/1.1
Host: braj.spidermanmobile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 00:39:59 GMT
Content-Type: image/png
Content-Length: 38233
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:55:50 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t95UidCitK0o79WIQvrOiH2D0WD0qNXjR3Tk%2FVGHT%2FIgZqj8HZDjhCk4SGYl1zNwNlwmyn2rjfKMMOB2hBb%2BZWjyG9p1L9y0rBsvoh%2BblbEGO3niQTenGyf6i9UsycgTrsjpNsp0mLpv4lM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79604fa8fa4c0b65-OSL
alt-svc: h2=":443"; ma=60
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
188.114.98.234200 OK 40 kB URL HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 188.114.98.234:0
File type ASCII text, with very long lines (30837)
Hash 559a3db110808a7ba261f58f38267044
ef2430a8ee65e68bdc5ca7ae18939ef76d714035
abe7cd152697759960f0db8ea16f5391817e02dc08132ce65ca5442cd9388530
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://braj.spidermanmobile.com
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 00:39:53 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/18/2022 06:18:29
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 6a6fb1370202249eac0d2ed1609a1293
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 79604f91ccfbb524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
IP 142.250.74.106:0
GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Feb 2023 00:39:53 GMT
date: Wed, 08 Feb 2023 00:39:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
unpkg.com/ionpackagesa@2.4.5-icons/ionicons.js
104.16.126.175200 OK 0 B URL HTTP/2 unpkg.com/ionpackagesa@2.4.5-icons/ionicons.js
IP 104.16.126.175:0
GET /ionpackagesa@2.4.5-icons/ionicons.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 00:39:57 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1e34c-yx/v2+cigBRw2DTMvcfEPLNHnU0"
via: 1.1 fly.io
fly-request-id: 01GJW5VPAEDWGVSQA998VZAG1P-ams
cf-cache-status: HIT
age: 6276328
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79604fa53e680b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/ionicons@5.0.0/dist/ionicons/p-af480238.js
104.16.126.175200 OK 0 B URL HTTP/2 unpkg.com/ionicons@5.0.0/dist/ionicons/p-af480238.js
IP 104.16.126.175:0
GET /ionicons@5.0.0/dist/ionicons/p-af480238.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://braj.spidermanmobile.com
Connection: keep-alive
Referer: https://unpkg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 00:39:57 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"232c-uchF0l8mHJgXmaMGCPlWLIIn3tc"
via: 1.1 fly.io
fly-request-id: 01GQ46MXKZV2GRKCGY6QV96233-fra
cf-cache-status: HIT
age: 1712099
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79604fa57818b505-OSL
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/ionicons@5.0.0/dist/ionicons/ionicons.esm.js
104.16.126.175200 OK 0 B URL HTTP/2 unpkg.com/ionicons@5.0.0/dist/ionicons/ionicons.esm.js
IP 104.16.126.175:0
GET /ionicons@5.0.0/dist/ionicons/ionicons.esm.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://braj.spidermanmobile.com
Connection: keep-alive
Referer: http://braj.spidermanmobile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 00:39:57 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"106-2QVIn+WWfE7GzXgXZTPbiG+yGbs"
via: 1.1 fly.io
fly-request-id: 01G4XQ07F3VERQN7D11X61A71M-fra
cf-cache-status: HIT
age: 21257286
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79604fa54ff8b505-OSL
content-encoding: br
X-Firefox-Spdy: h2