{"report_id":"2164cd9f-ed9d-4d96-ae16-7ead176b2984","version":0,"status":"done","tags":[],"date":"2026-06-17T20:46:12Z","url":{"schema":"http","addr":"zoomconnectsession.live","fqdn":"zoomconnectsession.live","domain":"zoomconnectsession.live","tld":"live"},"ip":{"addr":"52.72.49.79","port":0,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"zoomconnectsession.live/","fqdn":"zoomconnectsession.live","domain":"zoomconnectsession.live","tld":"live"},"title":"zoomconnectsession.live","dom":{"size":3776,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"cb474e6dc485095e2c08f245190afc97","sha1":"7c5b079214a777fa6c917c91093f4fa246005a90","sha256":"23df60c407393fc3455680312e607691a96884a2fd987cc8a947f0de4871d25d","sha512":"692d21a7172878e682956aaa7005bca796292b4214889621b485f9ed5e974a76fcf7e87b8223b7a286af119ecbc1e3f0cdd5c2ff9fc19cae38f06cdab8c6cfbf","ssdeep":"","tlshash":"9c7165b264e110331383c0587aea370eef46c687ca5fd849b5ed42a1afe2d6ac423149","dom_hash":"domhash195e8dd6de427bb3d0d9660001e15b15","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"zoomconnectsession.live","fqdn":"zoomconnectsession.live","domain":"zoomconnectsession.live","tld":"live"},"ip":{"addr":"52.72.49.79","port":0,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-22T20:46:12Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"zoomconnectsession.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"custom.rebrandly.com","ip":{"addr":"3.164.230.7","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2014-09-12","domain_rank":0,"first_seen":"2017-10-22T15:42:52Z","last_seen":"2026-06-15T02:55:36.137262Z","alert_count":0,"request_count":9,"received_data":384185,"sent_data":5007,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"zoomconnectsession.live","ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-06-15T11:03:03.207923Z","last_seen":"2026-06-15T11:03:03.207923Z","alert_count":3,"request_count":3,"received_data":5121,"sent_data":1358,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"zoomconnectsession.live/?rb.routing.mode=proxy\u0026rb.routing.signature=664205","fqdn":"zoomconnectsession.live","domain":"zoomconnectsession.live","tld":"live"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"18453464459a2ccd8fabc1f5953062ae","sha1":"97ff7621624669b2ffa8c9e5086ba6257d805ea0","sha256":"dfb75311946b6fd2661695d353ca2cd026e8f24f88bde5f837ff84bb3f7611b6","sha512":"608529ef1210992ec48c9445f905ffc84d79f4354b3bd07e9b0c4b212c01b6751ed82de031421a5c373d8c1526c141d361c9b1fe5defd8cf75b8cedc513b8917","ssdeep":"","tlshash":"0811e2e62a5130b217e3203cba5f3385b562e087285fd805b9ed85506f30f3e91769dc","size":1055,"data":"","first_seen":"2026-06-10T16:09:28.170701Z","last_seen":"2026-06-21T06:06:56.43833Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"custom.rebrandly.com/css/rebrandly.min.css","fqdn":"custom.rebrandly.com","domain":"rebrandly.com","tld":"com"},"ip":{"addr":"3.164.230.7","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://zoomconnectsession.live/?rb.routing.mode=proxy\u0026rb.routing.signature=664205","date":"2026-06-17T20:45:52.997Z","timestamp":1781729152997,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rebrandly.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Tue, 03 Jun 2025 12:39:42 GMT","end":"Sun, 05 Jul 2026 12:39:42 GMT"},"fingerprint":{"sha1":"33:A8:E9:A2:88:6D:47:73:81:39:18:BB:FE:6C:EB:FA:68:A0:D0:6B","sha256":"34:73:3B:E3:09:5F:C1:85:63:C5:21:BE:78:B8:D4:2B:97:92:8B:BD:76:19:1D:10:9E:A9:39:6F:58:F6:DD:C7"}}},"request":{"raw":"GET /css/rebrandly.min.css HTTP/1.1\r\nHost: custom.rebrandly.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://zoomconnectsession.live/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: text/css\r\ncontent-length: 171653\r\nlast-modified: Wed, 26 Jul 2017 15:07:49 GMT\r\nx-amz-version-id: null\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 17 Jun 2026 08:51:36 GMT\r\netag: \"dc1ac68ffd761d626c5d6ee4bd3585ca\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 f8f6e32ae3e5c2420050bcd1a2ee6090.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P1\r\nx-amz-cf-id: o4JBo0M2qU-yAfFQcU6k4DFvBuK-9XZForOF0papd6n5Xxkc0hkOkQ==\r\nage: 60285\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'self'; upgrade-insecure-requests;\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":171653,"size_decoded":172372,"mime_type":"text/css","magic":"ASCII text, with very long lines (41858), with CRLF line terminators","md5":"dc1ac68ffd761d626c5d6ee4bd3585ca","sha1":"75aaaf38cfc5acb6b9527c3a9e9d275a97e9fc2a","sha256":"6152189a0c2051343524432ef5e90a4ef63585e1d6ed8db28ed4da08619921b3","sha512":"1a0517465af3ab47c79e8f3127604d81358694867e8bfc707f3518bf6bbebdd3f10346090969ddcbd8b0cb2d8d13c02430c2bda5faea35e5232e6a9115cc1f6f","ssdeep":"3072:DDB6Ry5VcOpEZLorgw2/OYM1A0MReMvOMtlX5eiHBD3KES9MHx2oztSrgOzy2F:/B6f5eiUy2F","tlshash":"93f38651a15d16eab333c117b780a6983a75f122c5a20fedf12f7c2d9dc31a612a2f17","first_seen":"2023-04-15T15:37:59Z","last_seen":"2026-06-21T06:06:56.427582Z","times_seen":323,"resource_available":false,"data":null}},"time_used":100,"timings":{"blocked":-1,"dns":40,"connect":9,"send":0,"wait":10,"receive":20,"ssl":21},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"custom.rebrandly.com/fonts/roboto-regular-webfont.woff2","fqdn":"custom.rebrandly.com","domain":"rebrandly.com","tld":"com"},"ip":{"addr":"3.164.230.7","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://zoomconnectsession.live/?rb.routing.mode=proxy\u0026rb.routing.signature=664205","date":"2026-06-17T20:45:53.318Z","timestamp":1781729153318,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rebrandly.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Tue, 03 Jun 2025 12:39:42 GMT","end":"Sun, 05 Jul 2026 12:39:42 GMT"},"fingerprint":{"sha1":"33:A8:E9:A2:88:6D:47:73:81:39:18:BB:FE:6C:EB:FA:68:A0:D0:6B","sha256":"34:73:3B:E3:09:5F:C1:85:63:C5:21:BE:78:B8:D4:2B:97:92:8B:BD:76:19:1D:10:9E:A9:39:6F:58:F6:DD:C7"}}},"request":{"raw":"GET /fonts/roboto-regular-webfont.woff2 HTTP/1.1\r\nHost: custom.rebrandly.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: http://zoomconnectsession.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://custom.rebrandly.com/css/rebrandly.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: binary/octet-stream\r\ncontent-length: 19924\r\nlast-modified: Wed, 26 Jul 2017 15:43:36 GMT\r\nx-amz-version-id: null\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 17 Jun 2026 06:52:57 GMT\r\netag: \"87cb92212e1a1d6d6ef22fece7ffa6f1\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 0369688214835f42c0769e35bb5bc592.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P1\r\nx-amz-cf-id: lrQQ6N-ZK_CeJ0dqEkD8x_iW33rIl19kqtsKTtv_Ck2UouTDVyzWHQ==\r\nage: 49977\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":19924,"size_decoded":20480,"mime_type":"binary/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 19924, version 2.0","md5":"87cb92212e1a1d6d6ef22fece7ffa6f1","sha1":"7695315ff56af4958f2251448b34454207f97932","sha256":"8cd1425c2d5d2d5ef08e117026b31d6f0ff22f82c29368bb86040469a8672e59","sha512":"2305a0238167847eef53d2ba770c19d64d9c075ff0d5d678658e16f2e139569d47f248536f24817af6dc709c1a99e6c78a1d4b0466016650299fc53f1c52b323","ssdeep":"384:jBA6fkK1/dZ4sZmD0VvBXYI3CqPGADHWMmXSrTtgQhEiAHtM0w:jBAETkSBX53NOYHWMmirpXUHtVw","tlshash":"a692d197e1cc95fae9165834c5b3b96d5ce6ac0caca4e52bcdc25c282478b3c274f059","first_seen":"2023-04-15T15:37:59Z","last_seen":"2026-06-21T06:06:56.436631Z","times_seen":328,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":-1,"dns":0,"connect":8,"send":0,"wait":34,"receive":8,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"custom.rebrandly.com/fonts/roboto-light-webfont.woff2","fqdn":"custom.rebrandly.com","domain":"rebrandly.com","tld":"com"},"ip":{"addr":"3.164.230.7","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://zoomconnectsession.live/?rb.routing.mode=proxy\u0026rb.routing.signature=664205","date":"2026-06-17T20:45:53.319Z","timestamp":1781729153319,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rebrandly.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Tue, 03 Jun 2025 12:39:42 GMT","end":"Sun, 05 Jul 2026 12:39:42 GMT"},"fingerprint":{"sha1":"33:A8:E9:A2:88:6D:47:73:81:39:18:BB:FE:6C:EB:FA:68:A0:D0:6B","sha256":"34:73:3B:E3:09:5F:C1:85:63:C5:21:BE:78:B8:D4:2B:97:92:8B:BD:76:19:1D:10:9E:A9:39:6F:58:F6:DD:C7"}}},"request":{"raw":"GET /fonts/roboto-light-webfont.woff2 HTTP/1.1\r\nHost: custom.rebrandly.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: http://zoomconnectsession.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://custom.rebrandly.com/css/rebrandly.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: binary/octet-stream\r\ncontent-length: 19408\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, HEAD, PUT\r\naccess-control-max-age: 3000\r\nlast-modified: Wed, 26 Jul 2017 15:43:25 GMT\r\nx-amz-version-id: null\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 17 Jun 2026 05:43:27 GMT\r\netag: \"cf04d5d2c7fcd2cee94e60cf64a32722\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 0369688214835f42c0769e35bb5bc592.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P1\r\nx-amz-cf-id: JxVHmjIrDvk8w5DobXt-EjHBRhgOklCXJNCUxq-PchRbEQDVnEusLg==\r\nage: 54147\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":19408,"size_decoded":20006,"mime_type":"binary/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 19408, version 2.0","md5":"cf04d5d2c7fcd2cee94e60cf64a32722","sha1":"c00dd248ce68d8b79631b4efb667632530576c14","sha256":"ff1a5187aaa5122684e2bc14badaa43b5208f41527e9337f8551efa8c74d3b67","sha512":"4c0c7d541f4ab2e4dc656423769a67b271ae6c0019ec577df8cdd6fbb68506bc7a31aae877bf96872b1da43c86de1a82deb592d5b0275a5afdfa0cfa9743aa58","ssdeep":"384:SC3YMuIdcASD/m1eLO+KUVsMshOI1NzI0GTPlCq0WM0Z7qOh8DF1fZ2:SCvpdfUO1GOYX2ZGT9J0WMa7q3DFa","tlshash":"5c92d07c55383ed4eb698072068f6676709399045b2b2824e367dbe91e03cfb636e10f","first_seen":"2023-04-15T15:37:59Z","last_seen":"2026-06-21T06:06:56.432209Z","times_seen":328,"resource_available":false,"data":null}},"time_used":68,"timings":{"blocked":-1,"dns":0,"connect":8,"send":0,"wait":34,"receive":1,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"custom.rebrandly.com/fonts/roboto-italic-webfont.woff2","fqdn":"custom.rebrandly.com","domain":"rebrandly.com","tld":"com"},"ip":{"addr":"3.164.230.7","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://zoomconnectsession.live/?rb.routing.mode=proxy\u0026rb.routing.signature=664205","date":"2026-06-17T20:45:53.322Z","timestamp":1781729153322,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rebrandly.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Tue, 03 Jun 2025 12:39:42 GMT","end":"Sun, 05 Jul 2026 12:39:42 GMT"},"fingerprint":{"sha1":"33:A8:E9:A2:88:6D:47:73:81:39:18:BB:FE:6C:EB:FA:68:A0:D0:6B","sha256":"34:73:3B:E3:09:5F:C1:85:63:C5:21:BE:78:B8:D4:2B:97:92:8B:BD:76:19:1D:10:9E:A9:39:6F:58:F6:DD:C7"}}},"request":{"raw":"GET /fonts/roboto-italic-webfont.woff2 HTTP/1.1\r\nHost: custom.rebrandly.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: http://zoomconnectsession.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://custom.rebrandly.com/css/rebrandly.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: binary/octet-stream\r\ncontent-length: 23832\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, HEAD, PUT\r\naccess-control-max-age: 3000\r\nlast-modified: Wed, 26 Jul 2017 15:43:20 GMT\r\nx-amz-version-id: null\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 17 Jun 2026 02:55:33 GMT\r\netag: \"1026df55ea40fc33294fc73de3fd6a90\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 0369688214835f42c0769e35bb5bc592.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P1\r\nx-amz-cf-id: jMaTSVpKauGNje8YTV-J2snSJthhOgmR0nzvg55VEAySZ65AlmnXOQ==\r\nage: 64221\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":23832,"size_decoded":24430,"mime_type":"binary/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 23832, version 2.0","md5":"1026df55ea40fc33294fc73de3fd6a90","sha1":"16cc48eeff7d7910b9d622e082333ac51b1f41fc","sha256":"6547467f1664d50f22992840f55998b5a0355eafa46e2a35b872ff767d56ee87","sha512":"2a3feaf6435656e8cd9937919786f349d079d8957d663196694d7404b32815b90788973d22e1e2d04b9308bab1b2f433e4b3628afa5cc9ceffcadae3f25702d4","ssdeep":"384:YQmD4h97zXKoEUkI4XkIzLic4raOdRiNmIeO3hOPAVrPCSY99OrwahFRCDhdKMWL:YPD4TjE5IC1zLic4uKiNmIiPAP7Y99O3","tlshash":"2bb2e16271aad162c4e5f739cc48ed6d2e7db1e4dad982290111097e03cbe325bc6b6c","first_seen":"2023-04-15T15:37:59Z","last_seen":"2026-06-21T06:06:56.433252Z","times_seen":328,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":-1,"dns":0,"connect":8,"send":0,"wait":36,"receive":8,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"custom.rebrandly.com/fonts/roboto-medium-webfont.woff2","fqdn":"custom.rebrandly.com","domain":"rebrandly.com","tld":"com"},"ip":{"addr":"3.164.230.7","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://zoomconnectsession.live/?rb.routing.mode=proxy\u0026rb.routing.signature=664205","date":"2026-06-17T20:45:53.323Z","timestamp":1781729153323,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rebrandly.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Tue, 03 Jun 2025 12:39:42 GMT","end":"Sun, 05 Jul 2026 12:39:42 GMT"},"fingerprint":{"sha1":"33:A8:E9:A2:88:6D:47:73:81:39:18:BB:FE:6C:EB:FA:68:A0:D0:6B","sha256":"34:73:3B:E3:09:5F:C1:85:63:C5:21:BE:78:B8:D4:2B:97:92:8B:BD:76:19:1D:10:9E:A9:39:6F:58:F6:DD:C7"}}},"request":{"raw":"GET /fonts/roboto-medium-webfont.woff2 HTTP/1.1\r\nHost: custom.rebrandly.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: http://zoomconnectsession.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://custom.rebrandly.com/css/rebrandly.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: binary/octet-stream\r\ncontent-length: 19928\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, HEAD, PUT\r\naccess-control-max-age: 3000\r\nlast-modified: Wed, 26 Jul 2017 15:43:31 GMT\r\nx-amz-version-id: null\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 17 Jun 2026 02:55:33 GMT\r\netag: \"312a6918d181a4903737a40f95d6467e\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 0369688214835f42c0769e35bb5bc592.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P1\r\nx-amz-cf-id: vzYPJvwl1XWDN1CRyDu-4Bcu5MKcMmMA7x4LfWtVx0jssB0zl6xnQg==\r\nage: 64221\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":19928,"size_decoded":20526,"mime_type":"binary/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 19928, version 2.0","md5":"312a6918d181a4903737a40f95d6467e","sha1":"05c81ab5c7cf41e41a2272666e78f80555aec2cf","sha256":"abbc51ec54186fd602317fb9db718fe80f13b7f73e1f70f83f26cefe20c8bb63","sha512":"32ad7e55bc42f7eb74e63193a85ff0faa00e918a23f9506a9fd40eb98545b5c43220e5ba1ba767c790289f664b171df297ff12d12aedfdccb2a67fa80b9f3569","ssdeep":"384:GJOKXZ63VtdyFDT09lMn6HDjKllmA4+PN1AcWyS3iYQHhUWcFZZjQ7:cMFyBTgMn6HfKllmT+zAcWySSph5cFfo","tlshash":"fb92e1bb8446b2109e71caf0e912afe402128245fd5c6eabb17b4f847a61356d9f910f","first_seen":"2023-04-15T15:37:59Z","last_seen":"2026-06-21T06:06:56.435685Z","times_seen":328,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":-1,"dns":0,"connect":8,"send":0,"wait":42,"receive":3,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"custom.rebrandly.com/fonts/glyphicons-halflings-regular.woff2","fqdn":"custom.rebrandly.com","domain":"rebrandly.com","tld":"com"},"ip":{"addr":"3.164.230.7","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://zoomconnectsession.live/?rb.routing.mode=proxy\u0026rb.routing.signature=664205","date":"2026-06-17T20:45:53.326Z","timestamp":1781729153326,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rebrandly.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Tue, 03 Jun 2025 12:39:42 GMT","end":"Sun, 05 Jul 2026 12:39:42 GMT"},"fingerprint":{"sha1":"33:A8:E9:A2:88:6D:47:73:81:39:18:BB:FE:6C:EB:FA:68:A0:D0:6B","sha256":"34:73:3B:E3:09:5F:C1:85:63:C5:21:BE:78:B8:D4:2B:97:92:8B:BD:76:19:1D:10:9E:A9:39:6F:58:F6:DD:C7"}}},"request":{"raw":"GET /fonts/glyphicons-halflings-regular.woff2 HTTP/1.1\r\nHost: custom.rebrandly.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nOrigin: http://zoomconnectsession.live\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://custom.rebrandly.com/css/rebrandly.min.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: binary/octet-stream\r\ncontent-length: 18028\r\ndate: Wed, 17 Jun 2026 08:17:15 GMT\r\nlast-modified: Wed, 26 Jul 2017 15:43:17 GMT\r\netag: \"448c34a56d699c29117adc64c43affeb\"\r\nx-amz-version-id: null\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 0369688214835f42c0769e35bb5bc592.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P1\r\nx-amz-cf-id: EFEV9U78PY17atqol2xo-vBw7R5IyPUbQPsHKlwk-x1ssbHsAQPV-Q==\r\nage: 44919\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":18028,"size_decoded":18584,"mime_type":"binary/octet-stream","magic":"Web Open Font Format (Version 2), TrueType, length 18028, version 1.589","md5":"448c34a56d699c29117adc64c43affeb","sha1":"ca35b697d99cae4d1b60f2d60fcd37771987eb07","sha256":"fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c","sha512":"3811804f56ec3c82f0bef35de0a9250e546a1e357fb59e2784f610d638fec355a27b480e3f796243c0e3d3743be3eadda8f9064c2b5b49577e16b7e40efcdb83","ssdeep":"384:Y22oezK7jlf4flnEPn9+1z2DIH6r3lEsNgV:Y22oeKjlCnm9+1y8gA","tlshash":"d082d0f4ea92999085b01c37d19acb48dc87b9cef5a4d01611e4e13eb5ff8ad684c6c8","first_seen":"2023-04-05T16:42:51Z","last_seen":"2026-06-21T18:59:43.20773Z","times_seen":48273,"resource_available":false,"data":null}},"time_used":76,"timings":{"blocked":-1,"dns":0,"connect":8,"send":0,"wait":49,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"custom.rebrandly.com/img/rb_favicon_rounded.ico","fqdn":"custom.rebrandly.com","domain":"rebrandly.com","tld":"com"},"ip":{"addr":"3.164.230.7","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://zoomconnectsession.live/?rb.routing.mode=proxy\u0026rb.routing.signature=664205","date":"2026-06-17T20:45:53.485Z","timestamp":1781729153485,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rebrandly.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Tue, 03 Jun 2025 12:39:42 GMT","end":"Sun, 05 Jul 2026 12:39:42 GMT"},"fingerprint":{"sha1":"33:A8:E9:A2:88:6D:47:73:81:39:18:BB:FE:6C:EB:FA:68:A0:D0:6B","sha256":"34:73:3B:E3:09:5F:C1:85:63:C5:21:BE:78:B8:D4:2B:97:92:8B:BD:76:19:1D:10:9E:A9:39:6F:58:F6:DD:C7"}}},"request":{"raw":"GET /img/rb_favicon_rounded.ico HTTP/1.1\r\nHost: custom.rebrandly.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://zoomconnectsession.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: image/x-icon\r\ncontent-length: 99678\r\nlast-modified: Wed, 26 Jul 2017 15:14:59 GMT\r\nx-amz-version-id: null\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 17 Jun 2026 06:02:09 GMT\r\netag: \"e6e3352327aaaaa02c4b969c4576eda1\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 f8f6e32ae3e5c2420050bcd1a2ee6090.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P1\r\nx-amz-cf-id: 17Ikg3VD_10fw2wEneijitm_xzucPJdnF0OYKs4p2PsNNNDWI-pNGw==\r\nage: 53981\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'self'; upgrade-insecure-requests;\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":99678,"size_decoded":100400,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 5 icons, -128x-128, 32 bits/pixel, 64x64, 32 bits/pixel","md5":"e6e3352327aaaaa02c4b969c4576eda1","sha1":"82cea0ad598af753748b1e28d7f2af297e690661","sha256":"be1c6d63a1c8fa8c349717639462d757c632733d9ca15ca1a5c4b010cfb64091","sha512":"80ff7674b75e9af90c843e4f9c0c56a7ba4f6c22fd42c8a786572251bad5a4d7fb29b561f36a2950a185682e3847e9c3e8d44d1306c664a18b1b5d704d75e945","ssdeep":"768:eUl4gvwrKURrgqPfhC5ubw1klqcU8q/Lz5eOKPq7HCsq:eUl/orKEnfhCqfrmLz5psws","tlshash":"02a3415e25038500ed120a78e82364f0d21f1f35be27ff225d45b79a27b32f999952ce","first_seen":"2023-05-03T01:37:33Z","last_seen":"2026-06-21T06:06:56.421747Z","times_seen":328,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"zoomconnectsession.live/","fqdn":"zoomconnectsession.live","domain":"zoomconnectsession.live","tld":"live"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-17T20:45:45.516Z","timestamp":1781729145516,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: zoomconnectsession.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-21T19:29:32.173169Z","times_seen":16615702,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"zoomconnectsession.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"zoomconnectsession.live/","fqdn":"zoomconnectsession.live","domain":"zoomconnectsession.live","tld":"live"},"ip":{"addr":"52.72.49.79","port":80,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-17T20:45:52.147Z","timestamp":1781729152147,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: zoomconnectsession.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 302 Found\r\nContent-Length: 0\r\nDate: Wed, 17 Jun 2026 20:45:51 GMT\r\nLocation: http://zoomconnectsession.live/?rb.routing.mode=proxy\u0026rb.routing.signature=664205\r\nEngine: Rebrandly.redirect, version 2.1\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-21T19:29:32.173169Z","times_seen":16615702,"resource_available":true,"data":null}},"time_used":210,"timings":{"blocked":-1,"dns":3,"connect":99,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"zoomconnectsession.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"zoomconnectsession.live/?rb.routing.mode=proxy\u0026rb.routing.signature=664205","fqdn":"zoomconnectsession.live","domain":"zoomconnectsession.live","tld":"live"},"ip":{"addr":"52.72.49.79","port":80,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-17T20:45:52.466Z","timestamp":1781729152466,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /?rb.routing.mode=proxy\u0026rb.routing.signature=664205 HTTP/1.1\r\nHost: zoomconnectsession.live\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Length: 3763\r\nConnection: keep-alive\r\nContent-Type: text/html\r\nDate: Wed, 17 Jun 2026 06:55:00 GMT\r\nServer: AmazonS3\r\nAccept-Ranges: bytes\r\nAge: 49853\r\nETag: \"de14370c4b906cd8038a7dddca2130cb\"\r\nLast-Modified: Tue, 05 Jul 2022 08:14:45 GMT\r\nVia: 1.1 5b0b018dc5d72a42f205b24b17f4f56e.cloudfront.net (CloudFront)\r\nEngine: Rebrandly.redirect, version 2.1\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: fxAMz881WWHGTyp1_Q55Qn.iuLJOqR1n\r\nX-Cache: Hit from cloudfront\r\nX-Amz-Cf-Pop: IAD55-P8\r\nX-Amz-Cf-Id: pju4ORisQ6-gPdtKD1ogQBsS3Wyjau090mIyMJZCcDkXQtX0UEzUvw==\r\nX-XSS-Protection: 1; mode=block\r\nX-Frame-Options: DENY\r\nReferrer-Policy: no-referrer-when-downgrade\r\nContent-Security-Policy: frame-ancestors 'self'; upgrade-insecure-requests; object-src 'none'; script-src 'sha256-7/fy7EjXUskn9MLHbin/b0A7LQ32mACPQ2SdNj/O/vA=' 'unsafe-inline'; require-trusted-types-for 'script';\r\nX-Content-Type-Options: nosniff\r\nStrict-Transport-Security: max-age=31536000; includeSubDomains; preload\r\npermissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":3763,"size_decoded":4909,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"377296e9a60f7b77245829a6fe65a9b4","sha1":"9f0165a9145540cefaed47d909c0573acd7c7f98","sha256":"7e49bb3a60e95e82168a6cc0907eba1b07313100370728bf4c3c17dfab524c93","sha512":"8292657ea315f305a9daf2692f09e6b34b4b1981e363f257e1cc5508e4cde762a75736ed9d4410546b0355ae756484496e9042f7a48b9c8937d0b671f48e362c","ssdeep":"","tlshash":"f27132a214c1142313b3c068bae63b4dfe46c283cb5f994975ed67a36ff2d19c823685","first_seen":"2025-05-22T15:16:38.370762Z","last_seen":"2026-06-21T06:06:56.426334Z","times_seen":279,"resource_available":true,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-17","alert":"Sinkholed","trigger":"zoomconnectsession.live","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"custom.rebrandly.com/img/container-shadow.svg","fqdn":"custom.rebrandly.com","domain":"rebrandly.com","tld":"com"},"ip":{"addr":"3.164.230.7","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://zoomconnectsession.live/?rb.routing.mode=proxy\u0026rb.routing.signature=664205","date":"2026-06-17T20:45:53.334Z","timestamp":1781729153334,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rebrandly.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Tue, 03 Jun 2025 12:39:42 GMT","end":"Sun, 05 Jul 2026 12:39:42 GMT"},"fingerprint":{"sha1":"33:A8:E9:A2:88:6D:47:73:81:39:18:BB:FE:6C:EB:FA:68:A0:D0:6B","sha256":"34:73:3B:E3:09:5F:C1:85:63:C5:21:BE:78:B8:D4:2B:97:92:8B:BD:76:19:1D:10:9E:A9:39:6F:58:F6:DD:C7"}}},"request":{"raw":"GET /img/container-shadow.svg HTTP/1.1\r\nHost: custom.rebrandly.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://zoomconnectsession.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: image/svg+xml\r\ncontent-length: 684\r\nlast-modified: Wed, 26 Jul 2017 15:09:30 GMT\r\nx-amz-version-id: null\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 17 Jun 2026 06:43:13 GMT\r\netag: \"46050d5705e7df3ba1b7c53041a8738e\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 f8f6e32ae3e5c2420050bcd1a2ee6090.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P1\r\nx-amz-cf-id: BXiZSX4v91jtNQCgj_qHIfTmmCIm2w3ZjrrR568PQ0yQjk6_TVwQvQ==\r\nage: 50561\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'self'; upgrade-insecure-requests;\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":684,"size_decoded":1405,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"46050d5705e7df3ba1b7c53041a8738e","sha1":"c5ac0a231e50844281a186ec618241313e83785f","sha256":"f7a08f2f4b6de335ba965bbef0e6d854ff22e602b61017af538f0fe8dddae7ef","sha512":"f38fa0d9d6ac59a8a44575ce7910482b3ebe7f07e742c0415776821c7a50798011154a6b77ae53d9a2e551294488b054744f1cc9ac2162b0b2b59c263bc7f31a","ssdeep":"","tlshash":"fe01c08843cd541cf225c71ae7e4a583837270c39395014ce482313674e54b55ea13bd","first_seen":"2023-05-03T01:37:33Z","last_seen":"2026-06-21T06:06:56.431097Z","times_seen":323,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"custom.rebrandly.com/img/logo-blue.svg","fqdn":"custom.rebrandly.com","domain":"rebrandly.com","tld":"com"},"ip":{"addr":"3.164.230.7","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://zoomconnectsession.live/?rb.routing.mode=proxy\u0026rb.routing.signature=664205","date":"2026-06-17T20:45:53.361Z","timestamp":1781729153361,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.rebrandly.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Tue, 03 Jun 2025 12:39:42 GMT","end":"Sun, 05 Jul 2026 12:39:42 GMT"},"fingerprint":{"sha1":"33:A8:E9:A2:88:6D:47:73:81:39:18:BB:FE:6C:EB:FA:68:A0:D0:6B","sha256":"34:73:3B:E3:09:5F:C1:85:63:C5:21:BE:78:B8:D4:2B:97:92:8B:BD:76:19:1D:10:9E:A9:39:6F:58:F6:DD:C7"}}},"request":{"raw":"GET /img/logo-blue.svg HTTP/1.1\r\nHost: custom.rebrandly.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nSec-Fetch-Storage-Access: none\r\nConnection: keep-alive\r\nReferer: http://zoomconnectsession.live/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: image/svg+xml\r\ncontent-length: 5260\r\nlast-modified: Thu, 27 Jul 2017 07:57:55 GMT\r\nx-amz-version-id: null\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Wed, 17 Jun 2026 07:27:12 GMT\r\netag: \"00ce1dbc4bff4b4247237d0a32c12590\"\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 f8f6e32ae3e5c2420050bcd1a2ee6090.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P1\r\nx-amz-cf-id: J-qAA6YMjedZhFb0fV975XC10akmFHFysItpmXm1mPAOLE8k0QLAHQ==\r\nage: 47922\r\nx-xss-protection: 1; mode=block\r\nx-frame-options: DENY\r\ncontent-security-policy: frame-ancestors 'self'; upgrade-insecure-requests;\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":5260,"size_decoded":5982,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"00ce1dbc4bff4b4247237d0a32c12590","sha1":"7cc86bd92852d91f09cc9156c7d80d72fefa3866","sha256":"897f4e75a1efa1732e8cb746c9256d1c0f3dbc9e4f0f4b600a81fa4c1df9ec9c","sha512":"43ab9a97365ecdc44f1a1a5d11a3ec25789907c8e096aad95a8b45306f40ebfb96d620ee219dae284cc5dd038b7d910d063b86816fefa6780faa61fbd8fb1bbc","ssdeep":"96:AXQSf784yPXoNIA0VtS3Wl8RIAscQlTAmh3SdaH+W2VDEzntqgZD+JHRyV:sQA78VXoJEsmlV9DsaHByDEzntqgZD+y","tlshash":"57b112274301cbf9eee5463c95202844b5d5ec96f470e2c8bbaf5445d84c8e1b2ac6fe","first_seen":"2023-05-03T01:37:33Z","last_seen":"2026-06-21T06:06:56.420308Z","times_seen":323,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}