{"report_id":"1d6265d9-2167-41e6-8cb0-4d9ff00a2537","version":6,"status":"done","tags":["microsoft","phishing"],"date":"2026-04-21T23:57:16Z","url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"108.157.229.4","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"title":"Sign in to your Microsoft account","dom":{"size":10052,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (494)","md5":"85231b6e46b94caf7c1a9a9c925cbec1","sha1":"167e9ea3ddcb0ef34caa4616d57fef4cd1ba6be8","sha256":"c072fd554a1feaee01959df49d24d414d613912c793d29ac3dd66e7c89464daa","sha512":"704c711b140fb20aad44844d0349d2fa20dea529eecb2c8c3d7b3f7f31f0e7a085de6f4b8b92302f4554b838605f4effccad3ae14f6c32e8c2176aed8d63c0ec","ssdeep":"96:jTjfjaSJehD9PJo97G6I6AkeakPTjvJafY2EuG0JNRuf8fh86lv:3jUQpTv+JaZ1vfh8Gv","tlshash":"2622003164f04927418281d97bb9ae1b3f90ea07da4b8a1076ac4fd65fe3ddacc1b11c","dom_hash":"domhash47aa502ac30a1f0cfa9d0bdcec92990e","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"108.157.229.4","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":["openphish"],"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-26T23:57:16Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-21","alert":"Phishing Block","trigger":"microsoft.authorised-support.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]},"summary":[{"fqdn":"microsoft.authorised-support.com","ip":{"addr":"52.84.50.120","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2024-09-20","domain_rank":0,"first_seen":"2025-03-17T23:50:22.022928Z","last_seen":"2026-04-19T12:49:10.463047Z","alert_count":50,"request_count":10,"received_data":165113,"sent_data":6168,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/js/main.js","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"52.84.50.103","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"33bb80bc2bd6355192658567f93fad35","sha1":"f16881ff48d9dfd7576795ef2ff6ee638de46747","sha256":"5c353902dcaa6525f2e57a8af86e23a000765da21093d55043baa846b2d7ec7d","sha512":"5f068b3fdd79bbdfca49fad4d7adc6cd1adafef606f5ed1e4e8dfffdd030fd224d8a858438af9849fe43fd0683b33377881ad03a18a01cdd3f4e601e994a3313","ssdeep":"","tlshash":"5c112cab314108290eff36df64d29aca3d70c455586a04250779ea46e236ec17d3abeb","size":868,"data":"","first_seen":"2025-07-24T16:36:54.98311Z","last_seen":"2026-04-22T00:00:21.168439Z","times_seen":47,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/js/common.js","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"52.84.50.103","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4055559d986bb83ef861fea98464e81f","sha1":"5d0344bb39419349124d250d323d8ff93f022f1c","sha256":"a02f4c009d085355be3f332b7b4440b2cc168c7a69452e52caca1472dfb1cff5","sha512":"de36606570e3b3c58e02065f9a8d7c28a06090871b58e4ab6964799bf3a9decb12e4a3dad47d8c3d847f3ebd2f2a0b6d1283e57e5f7aaccbd723f9cbd9733cd3","ssdeep":"","tlshash":"0e51fd2a30b751f045f7049c6b8bd261613a14633589d989f69d4f891fcdf2ea0a37ce","size":3114,"data":"","first_seen":"2025-12-13T04:30:56.914064Z","last_seen":"2026-04-22T00:00:21.154056Z","times_seen":128,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"52.84.50.120","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-21T23:56:53.413Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"account-management.net.au","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:6B:F7:7E:E0:02:F5:7A:57:AD:60:BA:51:01:90:09:4F:C1:77:8E","sha256":"89:7E:B8:61:12:36:0E:E4:44:55:89:43:7F:D7:2B:5F:63:5F:BC:B4:14:D0:ED:AB:26:A1:55:54:42:71:DF:47"}}},"request":{"raw":"GET /new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: CloudFront\r\ncontent-type: application/json\r\ncontent-length: 0\r\nlocation: http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de\r\ndate: Tue, 21 Apr 2026 23:56:54 GMT\r\nx-amzn-trace-id: Root=1-69e80ec6-20322b852267a6c725c7d6c6;Parent=2f0d5715e581d58d;Sampled=0;Lineage=1:33d608b4:0\r\nx-amzn-remapped-content-length: 0\r\nx-amz-apigw-id: cMc_EFDPSwMEXbg=\r\nvia: 1.1 609d449080e37cc33d10975411c741a4.cloudfront.net (CloudFront), 1.1 42f63300fbd68ad2da1e182d0d6d6948.cloudfront.net (CloudFront)\r\nx-amzn-requestid: 1c124f64-250a-445a-add7-1b96dc5ea49f\r\nx-cache: Miss from cloudfront\r\nx-amz-cf-pop: FRA60-P12, OSL50-P3\r\nx-amz-cf-id: 7Pds17x6LdG0XeLb7EYCpPIat1NndSfEC95-XaYTl7uzw3wHEm8Law==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":11640,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-22T05:09:04.594815Z","times_seen":14046463,"resource_available":true,"data":null}},"time_used":1471,"timings":{"blocked":197,"dns":29,"connect":1,"send":0,"wait":1077,"receive":0,"ssl":165},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-21","alert":"Phishing Block","trigger":"microsoft.authorised-support.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"52.84.50.120","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-21T23:56:54.692Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 11640\r\nConnection: keep-alive\r\nx-amz-id-2: 2UBq//iXcLLEWf6/ysUwAVgW6jfuRL37/c/m5aAj8d4ERiUsUn0dhAnHqCcA2/b36HLqZ60qtEhWfZacUXs+LrK/DiBdPeqq\r\nx-amz-request-id: TBAJ94PX7ZVMV2A0\r\nDate: Tue, 21 Apr 2026 23:56:56 GMT\r\nLast-Modified: Tue, 21 Apr 2026 23:56:55 GMT\r\nETag: \"6d7bce4145378473ac46bbdeb53bbb0d\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nServer: AmazonS3\r\nVia: 1.1 652549e0dcae9775148cb207792b2a40.cloudfront.net (CloudFront)\r\nCache-Control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0, stale-while-revalidate=0, stale-if-error=0\r\nPragma: no-cache\r\nExpires: 0\r\nSurrogate-Control: no-store\r\nVary: *\r\nX-Cache: Miss from cloudfront\r\nX-Amz-Cf-Pop: OSL50-P3\r\nX-Amz-Cf-Id: T_fNeT2fNKwn93AESr6oTc3tVcQRqqVq6CzO7tOK9I8_6ZFNMI3MLg==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":11640,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"6d7bce4145378473ac46bbdeb53bbb0d","sha1":"7330bae99206331d5c13cb1a67bc3d40d1cbe060","sha256":"aa5660d67db4acb77310ec845e0bbfe7495d01c971edff59ba32a51753357866","sha512":"0906072ae063c5fcdd22d800524293567ce3883d1d63c530e649dc76f49c43339efd1c1cb09f715e302a1d6abd51882c72d3531b521e6cf00c262642737aca36","ssdeep":"96:PpZjfpaSJehD9PpoL7o6C6AkeakPTlvhCWY2+G+qNFexClh867gu:RZFUYz9v+jCMzlh8ugu","tlshash":"e4321c2064f009a7018ac4d97afa6e1b3f80ea07da4b9a1436ac4fd55fe3dd6cc1b11c","first_seen":"2025-07-24T16:32:56.6927Z","last_seen":"2026-04-22T00:00:21.176571Z","times_seen":50,"resource_available":true,"data":null}},"time_used":890,"timings":{"blocked":1,"dns":1,"connect":1,"send":0,"wait":886,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-21","alert":"Phishing Block","trigger":"microsoft.authorised-support.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/css/main.css","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"52.84.50.120","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","date":"2026-04-21T23:56:55.764Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/css/main.css HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: text/css\r\nContent-Length: 105216\r\nConnection: keep-alive\r\nx-amz-id-2: kaKNHavXp28GVJoEh4sGRxc/BQMCo4HDsqxIcSsiiwiy4J+kCJ9Ne3FCocMirwyD4cv57OlRJA+0Yyc6L57KM+ySkbd1ozUb\r\nx-amz-request-id: MQZPM13AY2KBYH94\r\nDate: Tue, 21 Apr 2026 23:56:57 GMT\r\nLast-Modified: Wed, 10 Dec 2025 04:48:53 GMT\r\nETag: \"75671ab4da372008bde39f3df19196a2\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nServer: AmazonS3\r\nVia: 1.1 652549e0dcae9775148cb207792b2a40.cloudfront.net (CloudFront)\r\nX-Cache: Miss from cloudfront\r\nX-Amz-Cf-Pop: OSL50-P3\r\nX-Amz-Cf-Id: 6UkK_EL5heRjvYszbGbHhFDqbgOzE7cHk83CZ4jLDJOfNp7qhuy7Vw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":105216,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"75671ab4da372008bde39f3df19196a2","sha1":"992dcc2c1d1e30ae129264092d3c8435ad9044e8","sha256":"088856f14b5b53bef73702f3333d48e35742a1ce0a4f630949f7c658d40b66aa","sha512":"c40068944b6d92c38d85917f7860f1882eca0610871bdb0275a161215d70fd407608351c688b62e4ed80fc3ee6eb25be60fb3fe8252fc777b7fb31ec4ee1fa16","ssdeep":"1536:8n7CPw+kGDazA/PWrF7qvEAFiQcpmTKgMtJ0yVU/c:IIlzyVU0","tlshash":"c4a3b79069243d26e037c73571c1bd8762211503e677aebbf6262db9cf896cb0b31e49","first_seen":"2024-02-23T23:59:54Z","last_seen":"2026-04-22T00:00:21.152083Z","times_seen":93,"resource_available":false,"data":null}},"time_used":1325,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":896,"receive":429,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-21","alert":"Phishing Block","trigger":"microsoft.authorised-support.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/js/common.js","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"52.84.50.103","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","date":"2026-04-21T23:56:55.768Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/js/common.js HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: text/javascript\r\nContent-Length: 3114\r\nConnection: keep-alive\r\nx-amz-id-2: +v1ycwDvgBY8l2zjFNiSVaJyEuFbgxWvdnF+RD0c3QyTq8AUAF9B4oJ+BpDMxr1YdnMhq3RcJDo=\r\nx-amz-request-id: MQZSQG399MXYKXM1\r\nDate: Tue, 21 Apr 2026 23:56:57 GMT\r\nLast-Modified: Wed, 10 Dec 2025 04:48:44 GMT\r\nETag: \"4055559d986bb83ef861fea98464e81f\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nServer: AmazonS3\r\nVia: 1.1 bb489e045ccdb24c55a720f2ea03e7f0.cloudfront.net (CloudFront)\r\nX-Cache: Miss from cloudfront\r\nX-Amz-Cf-Pop: OSL50-P3\r\nX-Amz-Cf-Id: 4hZE0TAmy2_rJIyv_q0l9ItfxlX0VJ9OmgryosZ9ozhh46HmWmVcxw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":3114,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"4055559d986bb83ef861fea98464e81f","sha1":"5d0344bb39419349124d250d323d8ff93f022f1c","sha256":"a02f4c009d085355be3f332b7b4440b2cc168c7a69452e52caca1472dfb1cff5","sha512":"de36606570e3b3c58e02065f9a8d7c28a06090871b58e4ab6964799bf3a9decb12e4a3dad47d8c3d847f3ebd2f2a0b6d1283e57e5f7aaccbd723f9cbd9733cd3","ssdeep":"","tlshash":"0e51fd2a30b751f045f7049c6b8bd261613a14633589d989f69d4f891fcdf2ea0a37ce","first_seen":"2025-12-13T04:30:56.914064Z","last_seen":"2026-04-22T00:00:21.154056Z","times_seen":128,"resource_available":true,"data":null}},"time_used":906,"timings":{"blocked":-1,"dns":0,"connect":1,"send":0,"wait":905,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-21","alert":"Phishing Block","trigger":"microsoft.authorised-support.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"52.84.50.103","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","date":"2026-04-21T23:56:55.769Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/svg+xml\r\nContent-Length: 3651\r\nConnection: keep-alive\r\nx-amz-id-2: RdFS3ZFV6xiH7rolksUHp37hzP9uCkKKxs1ClBmre46XR3VRl1cqSkwaTyeVJuGAWqmEmsPHx62VyBxPamhjVBxtmX3yTPbf\r\nx-amz-request-id: FXMJQHHAFDAJAMYE\r\nDate: Tue, 21 Apr 2026 23:56:58 GMT\r\nLast-Modified: Wed, 10 Dec 2025 04:48:53 GMT\r\nETag: \"ee5c8d9fb6248c938fd0dc19370e90bd\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nServer: AmazonS3\r\nVia: 1.1 e21c7dce7b26c6a388cc82dd5423f574.cloudfront.net (CloudFront)\r\nX-Cache: Miss from cloudfront\r\nX-Amz-Cf-Pop: OSL50-P3\r\nX-Amz-Cf-Id: ZDCw8Ofw5YkUJYcMC0aI_FpIDjKt_NYmEVyuUc4gft8jRwTj6R1tgw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":3651,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ee5c8d9fb6248c938fd0dc19370e90bd","sha1":"d01a22720918b781338b5bbf9202b241a5f99ee4","sha256":"04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a","sha512":"c77215b729d0e60c97f075998e88775cd0f813b4d094dc2fdd13e5711d16f4e5993d4521d0fbd5bf7150b0dbe253d88b1b1ff60901f053113c5d7c1919852d58","ssdeep":"","tlshash":"6371117b132887dae9d4a78c2e997b8d377095c4b1b24290874328a5bc086f7f038d60","first_seen":"2023-04-06T08:44:24Z","last_seen":"2026-04-22T05:02:07.519491Z","times_seen":124306,"resource_available":false,"data":null}},"time_used":3577,"timings":{"blocked":1315,"dns":0,"connect":0,"send":0,"wait":939,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-21","alert":"Phishing Block","trigger":"microsoft.authorised-support.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/images/documentation_bcb4d1dc4eae64f0b2b2538209d8435a.svg","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"52.84.50.103","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","date":"2026-04-21T23:56:55.770Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/images/documentation_bcb4d1dc4eae64f0b2b2538209d8435a.svg HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/svg+xml\r\nContent-Length: 1555\r\nConnection: keep-alive\r\nx-amz-id-2: KcrhEGyHgLWOsOb02AekoNTXHZ44Zl+dDa40aaeiUyXGPcH37jJgCG8j3LSTOY2Z0DJfB6EtKTkjFzE3k35Nj3MqIM7KiB1B\r\nx-amz-request-id: FXMTDDYEAQZHHSEB\r\nDate: Tue, 21 Apr 2026 23:56:58 GMT\r\nLast-Modified: Wed, 10 Dec 2025 04:48:53 GMT\r\nETag: \"bcb4d1dc4eae64f0b2b2538209d8435a\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nServer: AmazonS3\r\nVia: 1.1 bb489e045ccdb24c55a720f2ea03e7f0.cloudfront.net (CloudFront)\r\nX-Cache: Miss from cloudfront\r\nX-Amz-Cf-Pop: OSL50-P3\r\nX-Amz-Cf-Id: yOsCyCM33rrbwCqKXHAFVbw8MuXMChz88L3S-faKVTR9CCb7cB_BxA==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1555,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bcb4d1dc4eae64f0b2b2538209d8435a","sha1":"4f10568bc1b70bc98d5297b85812c33b3e636766","sha256":"a76c08e9cdc3bb87bfb57627ad8f6b46f0e5ef826cc7f046dfbaf25d7b7958ea","sha512":"db41de25233b7000dd841d244ca2a7504e4b1443a7cf41aa88136764eeb3002b3b99d0e8b31a828afe4749f454adcf5d2e4f9f72d645f0a6e66918b5e5a8a7b1","ssdeep":"","tlshash":"7e31277f029946cd9ee59b543b30b24d7fb9a64b73a240844f073ed95c866b3a438d23","first_seen":"2023-05-08T01:25:43Z","last_seen":"2026-04-22T00:00:21.171248Z","times_seen":740,"resource_available":false,"data":null}},"time_used":2196,"timings":{"blocked":1314,"dns":0,"connect":0,"send":0,"wait":882,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-21","alert":"Phishing Block","trigger":"microsoft.authorised-support.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"52.84.50.103","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","date":"2026-04-21T23:56:55.772Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/svg+xml\r\nContent-Length: 1592\r\nConnection: keep-alive\r\nx-amz-id-2: fubrsPzvKdRb/yJKAW+svqmgcn5gy+8AyWNY5fgHhcEshDb7y5z8rfbK+WF2Qg9Ba11qck+MlY8=\r\nx-amz-request-id: FXMX6RAZQ07QPXRM\r\nDate: Tue, 21 Apr 2026 23:56:58 GMT\r\nLast-Modified: Wed, 10 Dec 2025 04:48:54 GMT\r\nETag: \"4e48046ce74f4b89d45037c90576bfac\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nServer: AmazonS3\r\nVia: 1.1 253070fb98af6415d4d55959d04ff55a.cloudfront.net (CloudFront)\r\nX-Cache: Miss from cloudfront\r\nX-Amz-Cf-Pop: OSL50-P3\r\nX-Amz-Cf-Id: LQV0yOfjWY6kQnoDNypfghHSxefrvLm0oCp60NpMacy0DI90DdWwmw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1592,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4e48046ce74f4b89d45037c90576bfac","sha1":"4a41b3b51ed787f7b33294202da72220c7cd2c32","sha256":"8e6db1634f1812d42516778fc890010aa57f3e39914fb4803df2c38abbf56d93","sha512":"b2bba2a68edaa1a08cfa31ed058afb5e6a3150aabb9a78db9f5ccc2364186d44a015986a57707b57e2cc855fa7da57861ad19fc4e7006c2c239c98063fe903cf","ssdeep":"","tlshash":"b931787f43b45ae7239017741760626c13f4ee917169d0b4dba30c9a8d4bd33327843a","first_seen":"2023-04-14T20:16:11Z","last_seen":"2026-04-22T05:06:18.414929Z","times_seen":75212,"resource_available":false,"data":null}},"time_used":2219,"timings":{"blocked":1312,"dns":0,"connect":0,"send":0,"wait":906,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-21","alert":"Phishing Block","trigger":"microsoft.authorised-support.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/images/2_bc3d32a696895f78c19df6c717586a5d.svg","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"52.84.50.103","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","date":"2026-04-21T23:56:57.110Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/images/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/svg+xml\r\nContent-Length: 1864\r\nConnection: keep-alive\r\nx-amz-id-2: 77KIpLHbx8EdoEvdD9gXY6G8Sce4pEFbI9UlagtR80CQG5Yfn2SYmb/vLePoUzjd5r4D9HZFGAweDj8wwurV8d7dXPHF9/ac\r\nx-amz-request-id: FXMKRDBD56XC2MBB\r\nDate: Tue, 21 Apr 2026 23:56:58 GMT\r\nLast-Modified: Wed, 10 Dec 2025 04:48:53 GMT\r\nETag: \"bc3d32a696895f78c19df6c717586a5d\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nServer: AmazonS3\r\nVia: 1.1 50557aa30b42f85b01a1a22ebf5ee7a0.cloudfront.net (CloudFront)\r\nX-Cache: Miss from cloudfront\r\nX-Amz-Cf-Pop: OSL50-P3\r\nX-Amz-Cf-Id: 4rRts3iip5bsukZAlA9Ow7Tb2eBQIDqAAjQfv5Yteg5Z3a_DwcLM3Q==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1864,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bc3d32a696895f78c19df6c717586a5d","sha1":"9191cb156a30a3ed79c44c0a16c95159e8ff689d","sha256":"0e88b6fcbb8591edfd28184fa70a04b6dd3af8a14367c628edd7caba32e58c68","sha512":"8d4f38907f3423a86d90575772b292680f7970527d2090fc005f9b096cc81d3f279d59ad76eafca30c3d4bbaf2276bbaa753e2a46a149424cf6f1c319ded5a64","ssdeep":"","tlshash":"4e310059c51d3566ec04c3aceae1d468315e71efa8a581c961849b3f95b0dce0eccb70","first_seen":"2023-04-12T23:20:27Z","last_seen":"2026-04-22T00:00:21.165034Z","times_seen":102630,"resource_available":false,"data":null}},"time_used":915,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":915,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-21","alert":"Phishing Block","trigger":"microsoft.authorised-support.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/js/main.js","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"52.84.50.103","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","date":"2026-04-21T23:56:55.766Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/js/main.js HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: text/javascript\r\nContent-Length: 868\r\nConnection: keep-alive\r\nx-amz-id-2: cBc6yDXqHEikDS/1FayflXr5v+ct8Ew2FMwBH4nqsTrxA6u0lynuKLgpfszGAAAJw7KhbCsSqXyYpKjO7lNI7nLfy/NCaZFM\r\nx-amz-request-id: MQZG9K5WT13FDJCV\r\nDate: Tue, 21 Apr 2026 23:56:57 GMT\r\nLast-Modified: Wed, 10 Dec 2025 04:48:54 GMT\r\nETag: \"33bb80bc2bd6355192658567f93fad35\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nServer: AmazonS3\r\nVia: 1.1 253070fb98af6415d4d55959d04ff55a.cloudfront.net (CloudFront)\r\nX-Cache: Miss from cloudfront\r\nX-Amz-Cf-Pop: OSL50-P3\r\nX-Amz-Cf-Id: 1IfUh3rpjQc4oDF7W4dei92LRqFUT792nfsfOT1f5l0bamjPBRnqRQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":868,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (868), with no line terminators","md5":"33bb80bc2bd6355192658567f93fad35","sha1":"f16881ff48d9dfd7576795ef2ff6ee638de46747","sha256":"5c353902dcaa6525f2e57a8af86e23a000765da21093d55043baa846b2d7ec7d","sha512":"5f068b3fdd79bbdfca49fad4d7adc6cd1adafef606f5ed1e4e8dfffdd030fd224d8a858438af9849fe43fd0683b33377881ad03a18a01cdd3f4e601e994a3313","ssdeep":"","tlshash":"5c112cab314108290eff36df64d29aca3d70c455586a04250779ea46e236ec17d3abeb","first_seen":"2025-07-24T16:36:54.98311Z","last_seen":"2026-04-22T00:00:21.168439Z","times_seen":47,"resource_available":true,"data":null}},"time_used":889,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":886,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-21","alert":"Phishing Block","trigger":"microsoft.authorised-support.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"http","addr":"microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/images/favicon.ico","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"52.84.50.103","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de","date":"2026-04-21T23:56:57.573Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/images/favicon.ico HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://microsoft.authorised-support.com/new-account/EOzAFbYj1bjLmgufSIlKJJR9Kpvsy5kc3UkY=3Ag==9VFBaS1ZKVl9NZlVWXlBXZk5QTVFmSVhKSk5WS10=/6Xx5KG1mKRNjeU3rSnC8diFTM7R4V1de\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: image/vnd.microsoft.icon\r\nContent-Length: 17174\r\nConnection: keep-alive\r\nx-amz-id-2: OJXDcqLzHOtp2CXNYcyFTD7ScKCJmkEPJiK9/UvjHIFDQfrgBbWHd2fnTaLqN9+y88NSzhERlkIjgBFGvOaa+ijzMrGoN+mq\r\nx-amz-request-id: RZCKCTG02V4PAQEW\r\nDate: Tue, 21 Apr 2026 23:56:59 GMT\r\nLast-Modified: Wed, 10 Dec 2025 04:48:53 GMT\r\nETag: \"12e3dac858061d088023b2bd48e2fa96\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nServer: AmazonS3\r\nVia: 1.1 2f1d504785a7b18c010970da2bd4ab8c.cloudfront.net (CloudFront)\r\nX-Cache: Miss from cloudfront\r\nX-Amz-Cf-Pop: OSL50-P3\r\nX-Amz-Cf-Id: ruaTwIkvLCWztSOrNEu9ZVhckm6zJWeRkCTZFDuiXULJplCLP9N6cw==\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":17174,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors","md5":"12e3dac858061d088023b2bd48e2fa96","sha1":"e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5","sha256":"90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21","sha512":"c5030c55a855e7a9e20e22f4c70bf1e0f3c558a9b7d501cfab6992ac2656ae5e41b050ccac541efa55f9603e0d349b247eb4912ee169d44044271789c719cd01","ssdeep":"24:QSNTmTFxg4lyyyyyyyyyyyyyio7eeeeeeeeekzgsLsLsLsLsLsQZp:nfgyyyyyyyyyyyyynzQQQQQO","tlshash":"b772e35b1f5f4981ec4b0db80b125e80c5e49c973854dffbdb76b62888b0364ab845eb","first_seen":"2023-04-05T03:19:57Z","last_seen":"2026-04-22T00:39:05.227166Z","times_seen":164140,"resource_available":false,"data":null}},"time_used":892,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":891,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-04-21","alert":"Phishing Block","trigger":"microsoft.authorised-support.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-04-21","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}}]}