{"report_id":"1c6b25b4-f941-45bd-961f-7d8e09562ccb","version":6,"status":"done","tags":[],"date":"2024-12-31T08:37:15Z","url":{"schema":"http","addr":"4.bemycyp.com/index/m3?an=\u0026aurl=https://jams.pics/done?data=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\u0026diff=0\u0026isubs=0\u0026site=\u0026utm_clickid=x44sg0ow04wo0wo0","fqdn":"4.bemycyp.com","domain":"bemycyp.com","tld":"com"},"ip":{"addr":"104.21.16.184","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"jams.pics/done?data=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","fqdn":"jams.pics","domain":"jams.pics","tld":"pics"},"title":"Download"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-03-11T08:37:15Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"cesupufius.com","ip":{"addr":"88.208.46.23","port":0,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"domain_registered":"2023-03-09","domain_rank":0,"first_seen":"2023-03-09T10:55:19Z","last_seen":"2024-12-22T21:48:25.427058Z","alert_count":0,"request_count":1,"received_data":3844,"sent_data":481,"comment":"","tags":null,"fingerprints":null},{"fqdn":"jams.pics","ip":{"addr":"185.197.162.135","port":443,"asn":60144,"as":"3W Infra B.V.","country":"Latvia","country_code":"LV"},"domain_registered":"2024-02-11","domain_rank":0,"first_seen":"2024-02-11T22:17:39Z","last_seen":"2024-12-27T22:38:37.979075Z","alert_count":0,"request_count":2,"received_data":32441,"sent_data":3071,"comment":"","tags":null,"fingerprints":null},{"fqdn":"boachiheedooy.net","ip":{"addr":"139.45.197.119","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2024-11-03","domain_rank":0,"first_seen":"2024-12-07T20:35:16.11001Z","last_seen":"2024-12-07T20:35:16.11001Z","alert_count":1,"request_count":1,"received_data":28301,"sent_data":396,"comment":"","tags":null,"fingerprints":null},{"fqdn":"lavageethion.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2023-09-20","domain_rank":0,"first_seen":"2021-03-04T13:53:54Z","last_seen":"2024-12-31T03:40:25.969463Z","alert_count":1,"request_count":1,"received_data":0,"sent_data":406,"comment":"","tags":null,"fingerprints":null},{"fqdn":"aiveemtomsaix.net","ip":{"addr":"139.45.197.106","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2024-11-14","domain_rank":0,"first_seen":"2024-11-14T10:36:43Z","last_seen":"2024-12-27T06:37:27.198553Z","alert_count":1,"request_count":1,"received_data":5242,"sent_data":484,"comment":"","tags":null,"fingerprints":null},{"fqdn":"my.rtmark.net","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"domain_registered":"2014-10-29","domain_rank":9054,"first_seen":"2015-02-04T09:54:57Z","last_seen":"2024-12-25T10:11:28.974166Z","alert_count":0,"request_count":1,"received_data":1364,"sent_data":453,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-31","alert":"Sinkholed","trigger":"boachiheedooy.net","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-31","alert":"Sinkholed","trigger":"lavageethion.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-30","alert":"Sinkholed","trigger":"aiveemtomsaix.net","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"boachiheedooy.net/tag.min.js","fqdn":"boachiheedooy.net","domain":"boachiheedooy.net","tld":"net"},"ip":{"addr":"139.45.197.119","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"ac1abb27b1fcbdbf265fcc7f46831b4b","sha1":"133fd1779be4c3b92798b3feb42068f4edf16e16","sha256":"760821f2acf6074d4d5198ee78f1ad94c529f1a928d0dc7f0a95e055d9576598","sha512":"d5ec46a282640c82cd737f39e057e500005e703eeb727c5626bbb35623ad0a72f451e8b120749bbd78cda5cdbcbcc09b1be1b57fd3eb928028fe5cfae0c29d06","ssdeep":"1536:icLD0tMEvxkEwvw19mKenMRx6xW3ythkK0LEbjlWPE+t:jLD0dvxpLeng6x9thOLE/lWPE0","tlshash":"5263f8d5b6f2b5a602de402144bf4d694bfad920110fcb74d17a5df3266082893bbef8","size":71573,"data":"","first_seen":"2024-12-23T19:00:09.684937Z","last_seen":"2025-01-02T13:38:03.012889Z","times_seen":427,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jams.pics/done?data=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","fqdn":"jams.pics","domain":"jams.pics","tld":"pics"},"ip":{"addr":"185.197.162.135","port":443,"asn":60144,"as":"3W Infra B.V.","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":true,"md5":"db3efe5a6d2d87c246f37677159ad8b8","sha1":"6ea202f10a46cd41119cf2166d2ee6d562c5f091","sha256":"223515a03469038e574375fcc30d169327fb4f048edd5c2f2f11045357dacf37","sha512":"f1cbdc087a405922fa97f1f486b565d3c82623bd680f7c024f9106264a09129cbc2c36164a02675aa9819c62ebb18df00b4405c19868b8df90de8d8eb607d888","ssdeep":"","tlshash":"00d02bf04c5318a890470c67b41049a91ab9f1727f11b316304d313e58d0f31367eab4","size":268,"data":"","first_seen":"2023-03-08T09:14:22Z","last_seen":"2025-04-17T23:44:59.736858Z","times_seen":86,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"7cda88d9664d59be026159ed57dd6028","sha1":"4d8d648dc9e0091cc2a4549665678559800f4334","sha256":"59507dbb56d6f14860c3952186d7c5ce7abba43de840f92421fe8cfba357d11c","sha512":"8766b78e22108dc0765bebf947267c9de918404f67313c84c40d543f0c076887a3c55cc6338d709755aaa254a330815103c90c6cb35301eb9a1b6ff6245fc3ef","ssdeep":"","tlshash":"dac01280e6a52bf111fd91c236071d85f3e51bb5cea431e2a708480da6424cbca4c1a2","size":172,"data":"","first_seen":"2024-12-31T08:37:16.828039Z","last_seen":"2024-12-31T08:37:16.828039Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jams.pics/done?data=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","fqdn":"jams.pics","domain":"jams.pics","tld":"pics"},"ip":{"addr":"185.197.162.135","port":443,"asn":60144,"as":"3W Infra B.V.","country":"Latvia","country_code":"LV"},"introduction_type":"scriptElement","is_inline":true,"md5":"db71bb4046e0af24bcc78c0e07abf49f","sha1":"5306c124c5e8825b16b97c251b39fc308f30b46d","sha256":"ba7c2096d750f3eec52243b3f9e637e0918551d550c4606ec65c433b149d556e","sha512":"04db799c20fe813dca621644f1ccd5cab6126184dacde7fde258bf1ff39a68b6e89cac1da33db6712a46ed1d85016fda826839afd68f727c657977be5237ac44","ssdeep":"384:+v0a/K7iYFRdYtfzo0Qen9tO69aI8tAUeNDaUGRQ2t4PpBahqoo+KXnS7YhfGMOY:+K72fzHQ80GaIoQPzahq/AMOY","tlshash":"28c2e5a7321eb91a8719626150ef2ec5a2cc48c4718f1b7ce724e53634d753485ebef8","size":27972,"data":"","first_seen":"2024-12-31T08:37:16.829404Z","last_seen":"2024-12-31T08:37:16.829404Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eventHandler","is_inline":false,"md5":"06cdbeba653c02827377c2c051a039b0","sha1":"23ed516bdd0b4bb17bee96b3b048ccd0e5512571","sha256":"d616fc807d3a68d2a81c0fdcfc0db8e8f89b362890595b58edbf615bff303f96","sha512":"983ff767371d079921bbbb30bb2d21832ec14f3ebed7dfeb99f8438198e557ff01092314e740e044b3a84e589b73117c95f8584feb692c78e7aa82d60154c98c","ssdeep":"","tlshash":"fa6000303000f300f000c30000000c0000000000003000cc00000c30330000300003c0","size":10,"data":"","first_seen":"2024-12-31T08:37:16.830861Z","last_seen":"2024-12-31T08:37:16.830861Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eventHandler","is_inline":false,"md5":"72bc59791b65d946d219d77349aada86","sha1":"3ba0d9ca48fbebf308e35b994ae2c9205db699a8","sha256":"5c2b43d7429fa1cbc7dbfbe36883233fa28d30b0bb5014f00f84a89476a1a8d6","sha512":"31374f6be73cb34969a9280659955cbc387a0c425dce19133b35b6e962839945afdb97825f9c6c24a23db49c715b38cc5d741ae1607ef8aa58cb0c731dc0a6bb","ssdeep":"","tlshash":"395000300f0c00000000c0030000000030030c0000f00c00000c0000f030000000303f","size":9,"data":"","first_seen":"2024-12-31T08:37:16.832354Z","last_seen":"2024-12-31T08:37:16.832354Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"cesupufius.com/41077","fqdn":"cesupufius.com","domain":"cesupufius.com","tld":"com"},"ip":{"addr":"88.208.46.23","port":0,"asn":39572,"as":"DataWeb Global Group B.V.","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-12-31T08:36:50.84960693Z","timestamp":1735634210849,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /41077 HTTP/1.1\r\nHost: cesupufius.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://4.bemycyp.com/\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 206\r\nOrigin: https://4.bemycyp.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Tue, 31 Dec 2024 08:36:50 GMT\r\nContent-Type: application/json\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nAccess-Control-Allow-Origin: https://4.bemycyp.com\r\nAccess-Control-Allow-Credentials: true\r\nCache-Control: no-cache, no-store, must-revalidate\r\nPragma: no-cache\r\nExpires: 0\r\nSet-Cookie: userid=06f80f84-51b2-4c9d-9afe-81f6704f1481; expires=Mon, 31-Dec-2029 08:36:50 GMT; Path=/; SameSite=None; Secure\r\nAccept-CH: Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3232,"size_decoded":3232,"mime_type":"text/plain; charset=utf-8","magic":"JSON text data","md5":"805878d2ffe12200e3baa0bd49d2e775","sha1":"6841441b89fe212e39f1e8db9ddd6e1ac6e47434","sha256":"11ca762141a9cbf7da521ad5c614795c824f53c2475bb6158e46e8aa5e25db46","sha512":"5fb058b542f0025284d13366eaee16577639f33d599006e4855e6ba21d636a5209e8993ceec0d6ea1c2851d21833f7e4bc01617cd8dfe9cefe7c127aaa5a9cd1","ssdeep":"","tlshash":"646176db26e9822f86c53dd7c7725c7d30668c98df4a43a9afd7641ba8072344b19388","first_seen":"2024-12-31T08:37:16.81766Z","last_seen":"2024-12-31T08:37:16.81766Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"jams.pics/done?data=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","fqdn":"jams.pics","domain":"jams.pics","tld":"pics"},"ip":{"addr":"185.197.162.135","port":443,"asn":60144,"as":"3W Infra B.V.","country":"Latvia","country_code":"LV"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-12-31T08:36:50.923Z","timestamp":1735634210923,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jam.click","organization":""},"issuer":{"commonName":"E5","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Dec 2024 20:09:28 GMT","end":"Wed, 05 Mar 2025 20:09:27 GMT"},"fingerprint":{"sha1":"64:36:BE:2C:F8:46:37:C8:9E:7C:0C:59:92:B4:B5:EB:E2:E4:8E:4C","sha256":"D1:F7:DD:54:97:8B:42:89:B0:DA:C1:C6:0C:F6:31:30:35:2E:2B:0F:1C:ED:98:BF:F6:31:B1:62:13:85:8C:FA"}}},"request":{"raw":"HEAD /done?data=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 HTTP/1.1\r\nHost: jams.pics\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jams.pics/done?data=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\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 31 Dec 2024 08:36:51 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-11T15:03:04.78143Z","times_seen":15013264,"resource_available":true,"data":null}},"time_used":383,"timings":{"blocked":175,"dns":71,"connect":22,"send":0,"wait":30,"receive":0,"ssl":81},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"boachiheedooy.net/tag.min.js","fqdn":"boachiheedooy.net","domain":"boachiheedooy.net","tld":"net"},"ip":{"addr":"139.45.197.119","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jams.pics/done?data=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","date":"2024-12-31T08:36:51.226Z","timestamp":1735634211226,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"boachiheedooy.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 03 Nov 2024 18:11:45 GMT","end":"Sat, 01 Feb 2025 18:11:44 GMT"},"fingerprint":{"sha1":"81:D8:78:4A:B0:20:9E:22:A7:4F:D0:E1:2D:BE:9D:88:9C:9C:5A:E0","sha256":"0C:04:FA:1D:DE:32:61:21:F3:FF:B8:63:FB:89:6B:8C:2B:E2:88:D9:2C:45:82:4D:2F:81:90:5B:52:37:45:94"}}},"request":{"raw":"GET /tag.min.js HTTP/1.1\r\nHost: boachiheedooy.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jams.pics/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 31 Dec 2024 08:36:51 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncontent-length: 27333\r\ncontent-encoding: br\r\nx-trace-id: 919bebb9d3c61569a30155445e7a7746\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0\r\naccept-ranges: bytes\r\nlast-modified: Mon, 23 Dec 2024 17:21:54 GMT\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\npragma: no-cache\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ntiming-allow-origin: *, *\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":27333,"size_decoded":71573,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"ac1abb27b1fcbdbf265fcc7f46831b4b","sha1":"133fd1779be4c3b92798b3feb42068f4edf16e16","sha256":"760821f2acf6074d4d5198ee78f1ad94c529f1a928d0dc7f0a95e055d9576598","sha512":"d5ec46a282640c82cd737f39e057e500005e703eeb727c5626bbb35623ad0a72f451e8b120749bbd78cda5cdbcbcc09b1be1b57fd3eb928028fe5cfae0c29d06","ssdeep":"1536:icLD0tMEvxkEwvw19mKenMRx6xW3ythkK0LEbjlWPE+t:jLD0dvxpLeng6x9thOLE/lWPE0","tlshash":"5263f8d5b6f2b5a602de402144bf4d694bfad920110fcb74d17a5df3266082893bbef8","first_seen":"2024-12-23T19:00:09.684937Z","last_seen":"2025-01-02T13:38:03.012889Z","times_seen":427,"resource_available":true,"data":null}},"time_used":331,"timings":{"blocked":137,"dns":50,"connect":26,"send":0,"wait":53,"receive":2,"ssl":59},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-31","alert":"Sinkholed","trigger":"boachiheedooy.net","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"jams.pics/favicon.ico","fqdn":"jams.pics","domain":"jams.pics","tld":"pics"},"ip":{"addr":"185.197.162.135","port":443,"asn":60144,"as":"3W Infra B.V.","country":"Latvia","country_code":"LV"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://jams.pics/done?data=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","date":"2024-12-31T08:36:51.453Z","timestamp":1735634211453,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jam.click","organization":""},"issuer":{"commonName":"E5","organization":"Let's Encrypt"},"validity":{"start":"Thu, 05 Dec 2024 20:09:28 GMT","end":"Wed, 05 Mar 2025 20:09:27 GMT"},"fingerprint":{"sha1":"64:36:BE:2C:F8:46:37:C8:9E:7C:0C:59:92:B4:B5:EB:E2:E4:8E:4C","sha256":"D1:F7:DD:54:97:8B:42:89:B0:DA:C1:C6:0C:F6:31:30:35:2E:2B:0F:1C:ED:98:BF:F6:31:B1:62:13:85:8C:FA"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: jams.pics\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jams.pics/done?data=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\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 31 Dec 2024 08:36:51 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 32038\r\nlast-modified: Fri, 26 Feb 2016 13:10:52 GMT\r\netag: \"56d04edc-7d26\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":32038,"size_decoded":32038,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 4 icons, 64x64, 32 bits/pixel, 48x48, 32 bits/pixel","md5":"2c30e05d020d928eff6a7e3534dd7bee","sha1":"f1449a17b8cdd4a3e5cde5aae327b17deec977b2","sha256":"3cf1b77c832294b02ef078c54e44ae7a39f47adcae5b23ce28554df6696acc3d","sha512":"ac32ca988f0c9a549f287cf247a4213f4880328ee5ace096855592ee0f208bbcf634f3c15eda9414dfffdd747ac80f34768db1cd503cb301faa1e9aa27b34a1f","ssdeep":"192:miikt/TkKAJ/qLBIZRt44n8iUicpSwZGm6w1aEXpP9OC9HqjujfRul/:miftLkKqq9aM4n8dXpVOcHqjqRk","tlshash":"ffe29501abd29e63c51446388ee3d3743334ed889b16870b57e9bd6b3eb77962c11268","first_seen":"2023-05-25T01:35:37Z","last_seen":"2025-12-22T00:21:24.74934Z","times_seen":91,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lavageethion.com/r7NT2yo95T10y/34041","fqdn":"lavageethion.com","domain":"lavageethion.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://jams.pics/done?data=MmtqSGIzRmlseFBpdnRhandBRXNEaGdiUkRKbkc3d2pMYWFoclByWHQ4UGJ2YUJ1cEtkbDFvRGF1T3NjZExXOVgyU2I5c05UUGN0SXZkZDJ5UXB3WDd5WTQ3V3Qzamh0eEtDS3lJQmpPZGw1V2MzdUlEU3JBV1E3WC9DMTIwUG9odmUwZk1VWmFVUFcxdXZyL3lsNHB4YklnM0thWFFCdFFOeENWeG5ERkZrVVBVN2dTUVFEYVBhZ1BvbkkyT2NUdUY4U24rTkt3bjU3RDBCejZrTzVDSU83UHVnSHlHc0ozRWRoNUQ3Uzc1QVl4UzFwb0ZseFJQaEtRYTBRTzFzOEQwMFlNSlNTQmRnRW04OUtwcllBNFRHUXBLdDQ2VERtNmVUWEZBNS80NFdsVUE0OWhUUzIrdis0SFhLSWdFVUQxeVV3bnduMzNhTm9NTkNDM3lmQ1FOU3hkRTFZTEd6WVBURFFOMWJZaytOY0F1K2RTcjl6NVNocDhEbGNmYTFLcG93N0E2SE9PQXRHanVzT3BZcGlRV0tNTi9ISW8vRkFrWDRUMkMwSXNuNlFzWTBqNXJLMWxaM0w0WmEvQUNHU28vVkdjN2ZFSHJld0NoTGErRVFmUEV2QnBFZ1F6Rnl0R0NXaWhwcUhaaGgvbEppWXJxeXJRVWtIODl1MFp2dkpiYlVoZXlWNjZmL3V4MGhTRCswZ1UxMjI2am40dzlVYnE5SlVtM1ZIRUpFPQ","date":"2024-12-31T08:36:51.225Z","timestamp":1735634211225,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /r7NT2yo95T10y/34041 HTTP/1.1\r\nHost: lavageethion.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jams.pics/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-11T15:03:04.78143Z","times_seen":15013264,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-31","alert":"Sinkholed","trigger":"lavageethion.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"aiveemtomsaix.net/5/3041593/?oo=1\u0026js_build=iclick-v1.1028.0\u0026dmn=boachiheedooy.net\u0026tt=2\u0026ix=0","fqdn":"aiveemtomsaix.net","domain":"aiveemtomsaix.net","tld":"net"},"ip":{"addr":"139.45.197.106","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://jams.pics/done?data=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","date":"2024-12-31T08:36:51.585Z","timestamp":1735634211585,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"aiveemtomsaix.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Thu, 14 Nov 2024 04:13:35 GMT","end":"Wed, 12 Feb 2025 04:13:34 GMT"},"fingerprint":{"sha1":"F4:FC:D8:CB:F1:41:86:2B:B9:2E:AE:D4:3E:92:DE:6D:64:38:F1:26","sha256":"D2:39:0A:13:FB:33:DE:F7:2B:F6:CE:B6:F3:4A:CD:F8:A4:79:A6:FA:19:15:1E:3F:63:9B:13:6E:E8:53:08:24"}}},"request":{"raw":"GET /5/3041593/?oo=1\u0026js_build=iclick-v1.1028.0\u0026dmn=boachiheedooy.net\u0026tt=2\u0026ix=0 HTTP/1.1\r\nHost: aiveemtomsaix.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://jams.pics\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jams.pics/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 31 Dec 2024 08:36:51 GMT\r\ncontent-type: application/json\r\nx-trace-id: 335e1a5933f629d64fd6ae98c9cca59f\r\nlink: \u003chttps://my.rtmark.net\u003e; rel=\"preconnect dns-prefetch\"\r\naccept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version\r\naccess-control-allow-origin: https://jams.pics\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon\r\naccess-control-max-age: 86400\r\ntiming-allow-origin: *\r\nset-cookie: OAID=008143803b744425fc928d6ab6130e82; expires=Wed, 31 Dec 2025 08:36:51 GMT; path=/; secure; SameSite=None\noaidts=1735634211; expires=Wed, 31 Dec 2025 08:36:51 GMT; path=/; secure; SameSite=None\nsyncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT\r\npragma: no-cache, no-cache\r\ncache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0\r\nexpires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4020,"size_decoded":4020,"mime_type":"application/json","magic":"troff or preprocessor input, ASCII text, with very long lines (4024), with no line terminators","md5":"8a403941b27979971707800ac02117bf","sha1":"d1191a081507cdca24ca0ddabd607bbcb1d043f5","sha256":"277384eb93d4cde274f178353c1dfa4eefd8cfd8691517841cae9b08cb034537","sha512":"e4a3dcb881d896d0503e64a7186a56481cf6119303e9d3217f5c44689b38ba01335ae5d56c5d8a226ac2886d55e1618c20e1d8675df7aa9e8414a6f5345122a0","ssdeep":"","tlshash":"4f81fa218fe27d8c9ddbc6595e38f22c416fd0e1939d96898e78df0c7a90383187b654","first_seen":"2024-12-31T08:37:16.824173Z","last_seen":"2024-12-31T08:37:16.824173Z","times_seen":1,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":107,"dns":18,"connect":26,"send":0,"wait":30,"receive":0,"ssl":61},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-30","alert":"Sinkholed","trigger":"aiveemtomsaix.net","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"my.rtmark.net/gid.js?userId=008143803b744425fc928d6ab6130e82","fqdn":"my.rtmark.net","domain":"rtmark.net","tld":"net"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://jams.pics/done?data=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","date":"2024-12-31T08:36:51.807Z","timestamp":1735634211807,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"my.rtmark.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 06 Nov 2024 10:31:42 GMT","end":"Tue, 04 Feb 2025 10:31:41 GMT"},"fingerprint":{"sha1":"8A:B7:CD:87:FA:39:07:A8:88:41:1C:9E:2D:0E:97:51:61:75:C1:34","sha256":"A9:31:D4:17:BF:30:7D:3A:D4:2A:97:13:3D:DD:D5:0B:67:61:57:30:98:FA:DD:96:F5:8F:88:B5:6F:21:A7:5E"}}},"request":{"raw":"GET /gid.js?userId=008143803b744425fc928d6ab6130e82 HTTP/1.1\r\nHost: my.rtmark.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://jams.pics\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://jams.pics/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 31 Dec 2024 08:36:51 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-origin: https://jams.pics\r\naccess-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE\r\naccess-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token\r\naccess-control-expose-headers: Authorization\r\naccess-control-allow-credentials: true\r\ntiming-allow-origin: *, *\r\nset-cookie: ID=008143803b744425fc928d6ab6130e82; expires=Wed, 31 Dec 2025 08:36:51 GMT; secure; SameSite=None\r\nstrict-transport-security: max-age=1\r\nx-content-type-options: nosniff\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=0kFCZxrf43xHUKQCnReHMXQj9q6Nafu%2B%2FI0rqQ%2BjNtwF0ZB9Bq6fICGRKBV9UDJWfxcD0ZlGO0BjzhDlTZ7lxL173CI35inpRxj2mnkfLy263oHgsuaSxQQPhKG1TTC5\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8fa8f1bfeaf556b1-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=546\u0026min_rtt=464\u0026rtt_var=161\u0026sent=7\u0026recv=10\u0026lost=0\u0026retrans=0\u0026sent_bytes=3279\u0026recv_bytes=1222\u0026delivery_rate=6787500\u0026cwnd=254\u0026unsent_bytes=0\u0026cid=9228949a1422287c\u0026ts=57\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":65,"size_decoded":65,"mime_type":"application/json; charset=utf-8","magic":"troff or preprocessor input, ASCII text, with no line terminators","md5":"fbc4f78edf57342008f510885eaa7ce4","sha1":"ae6541dcf2300c72435685bdd62814f7dcbd03cb","sha256":"6d65f6eb2a3b309dc6abef694fd7bb870431591f5f296be2396dbca735742d73","sha512":"ec19036de7020182fcf6bdad57a9afe8bf51ac707d82c64128a037d5b4090b037cb4c37d157c5a5b413e401e590fc2ecd0c73f76da2812afe7abacb8073e7dd8","ssdeep":"","tlshash":"b5a022e03828abc200002c0c8b23ac0c20c3c8c22200380083c28200a0c23bc0ee3200","first_seen":"2024-12-31T08:37:16.825563Z","last_seen":"2024-12-31T08:37:16.825563Z","times_seen":1,"resource_available":false,"data":null}},"time_used":87,"timings":{"blocked":23,"dns":1,"connect":1,"send":0,"wait":40,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}