URL User Request GET HTTP/1.1IP52.4.60.6:443
CertificateIssuerAmazon Subject*.us-east-1.snowflakecomputing.com FingerprintB2:2B:E2:C8:80:CD:C2:02:FB:0C:04:31:62:4A:09:60:39:26:E5:0B ValidityFri, 16 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 52.4.60.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Date: Wed, 24 Apr 2024 08:30:06 GMT
Expect-CT: enforce, max-age=3600
Location: https://52.4.60.6/
X-Content-Type-Options: nosniff
X-Country: Norway
X-Frame-Options: deny
X-XSS-Protection: 1; mode=block
Content-Length: 134
Connection: keep-alive
|
URL User Request GET HTTP/1.1IP52.4.60.6:443
CertificateIssuerAmazon Subject*.us-east-1.snowflakecomputing.com FingerprintB2:2B:E2:C8:80:CD:C2:02:FB:0C:04:31:62:4A:09:60:39:26:E5:0B ValidityFri, 16 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashbad2e8579dcdb79399aac2064216a37d 7771e4d9c60e02ce2246b5d71bb23f92b9fb8a90 58bf2215b395dcac74c009aa98701854e43cbe54a1cd3a95fee6a647ca9910d4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 52.4.60.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Content-Type: text/html
Date: Wed, 24 Apr 2024 08:30:08 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: deny
Content-Length: 118
Connection: keep-alive
|
IP52.4.60.6:443
CertificateIssuerAmazon Subject*.us-east-1.snowflakecomputing.com FingerprintB2:2B:E2:C8:80:CD:C2:02:FB:0C:04:31:62:4A:09:60:39:26:E5:0B ValidityFri, 16 Feb 2024 00:00:00 GMT - Sun, 16 Mar 2025 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashbad2e8579dcdb79399aac2064216a37d 7771e4d9c60e02ce2246b5d71bb23f92b9fb8a90 58bf2215b395dcac74c009aa98701854e43cbe54a1cd3a95fee6a647ca9910d4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: 52.4.60.6
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://52.4.60.6/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Content-Type: text/html
Date: Wed, 24 Apr 2024 08:30:08 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: deny
Content-Length: 118
Connection: keep-alive
|