{"report_id":"2d603eed-825e-41b0-97e2-6ae3145cfc3a","version":6,"status":"done","tags":["suspicious","phishing","tycoon","aitm"],"date":"2025-10-07T12:49:19Z","url":{"schema":"http","addr":"eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","fqdn":"eumsoft365.blob.core.windows.net","domain":"windows.net","tld":"net"},"ip":{"addr":"20.209.73.130","port":0,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"The Netherlands","country_code":"NL"},"final":{"url":{"schema":"https","addr":"eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","fqdn":"eumsoft365.blob.core.windows.net","domain":"windows.net","tld":"net"},"title":"Proceed To Sign In"},"submit":{"url":{"schema":"http","addr":"eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","fqdn":"eumsoft365.blob.core.windows.net","domain":"windows.net","tld":"net"},"ip":{"addr":"20.209.73.130","port":0,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"The Netherlands","country_code":"NL"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-11T12:49:19Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":3,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - Anti-debugging code","verdict":"suspicious","severity":"low","comment":"","tags":["suspicious"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Tycoon Phishing Kit","verdict":"phishing","severity":"high","comment":"","tags":["phishing","tycoon","aitm"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Tycoon Phishing Kit","verdict":"phishing","severity":"high","comment":"","tags":["phishing","tycoon","aitm"],"meta":null}]},"summary":[{"fqdn":"github.com","ip":{"addr":"140.82.121.4","port":443,"asn":36459,"as":"GITHUB","country":"Germany","country_code":"DE"},"domain_registered":"2007-10-09","domain_rank":40,"first_seen":"2016-07-13T12:28:22Z","last_seen":"2025-10-06T02:44:32.1049Z","alert_count":0,"request_count":1,"received_data":15230,"sent_data":471,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GitHub Pages","description":"GitHub Pages is a static site hosting service.","website":"https://pages.github.com/","common_platform_enumeration":"","icon":"GitHub.svg","categories":["PaaS"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-10-05T22:15:09.164871Z","alert_count":0,"request_count":1,"received_data":49331,"sent_data":468,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"aadcdn.msauth.net","ip":{"addr":"13.107.246.53","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"domain_registered":"2018-10-25","domain_rank":5248,"first_seen":"2018-11-19T10:50:03Z","last_seen":"2025-10-06T00:22:21.815315Z","alert_count":0,"request_count":7,"received_data":68343,"sent_data":3657,"comment":"","tags":null,"fingerprints":[{"name":"Azure Front Door","description":"Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.","website":"https://docs.microsoft.com/en-us/azure/frontdoor/","common_platform_enumeration":"","icon":"Azure.svg","categories":["Load balancers"]},{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]}]},{"fqdn":"release-assets.githubusercontent.com","ip":{"addr":"185.199.110.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2014-02-06","domain_rank":67648,"first_seen":"2025-05-11T09:28:38.217452Z","last_seen":"2025-10-06T05:23:33.946402Z","alert_count":0,"request_count":1,"received_data":11067,"sent_data":1303,"comment":"","tags":null,"fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]},{"name":"Microsoft HTTPAPI:2.0","description":"Microsoft HTTPAPI is a kernel-mode HTTP driver in the Windows operating system responsible for handling HTTP requests and responses with efficiency, scalability, and security.","website":"https://learn.microsoft.com/en-us/windows/win32/http/http-api-start-page","common_platform_enumeration":"","icon":"Microsoft.svg","categories":["Web servers"]}]},{"fqdn":"eumsoft365.blob.core.windows.net","ip":{"addr":"20.209.73.130","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"The Netherlands","country_code":"NL"},"domain_registered":"1995-08-10","domain_rank":0,"first_seen":"2025-10-07T12:49:19.782427Z","last_seen":"2025-10-07T12:49:19.782427Z","alert_count":3,"request_count":2,"received_data":449142,"sent_data":1018,"comment":"","tags":null,"fingerprints":[{"name":"Microsoft HTTPAPI:2.0","description":"Microsoft HTTPAPI is a kernel-mode HTTP driver in the Windows operating system responsible for handling HTTP requests and responses with efficiency, scalability, and security.","website":"https://learn.microsoft.com/en-us/windows/win32/http/http-api-start-page","common_platform_enumeration":"","icon":"Microsoft.svg","categories":["Web servers"]},{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]}]},{"fqdn":"logincdn.msauth.net","ip":{"addr":"13.107.246.53","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"domain_registered":"2018-10-25","domain_rank":23083,"first_seen":"2019-04-23T01:13:28Z","last_seen":"2025-10-06T14:45:24.878632Z","alert_count":0,"request_count":1,"received_data":968,"sent_data":506,"comment":"","tags":null,"fingerprints":[{"name":"Azure Front Door","description":"Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.","website":"https://docs.microsoft.com/en-us/azure/frontdoor/","common_platform_enumeration":"","icon":"Azure.svg","categories":["Load balancers"]},{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]}]},{"fqdn":"code.jquery.com","ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":4915,"first_seen":"2012-05-21T17:28:02Z","last_seen":"2025-10-05T22:13:43.313629Z","alert_count":0,"request_count":1,"received_data":90136,"sent_data":440,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - Anti-debugging code","verdict":"suspicious","severity":"low","comment":"","tags":["suspicious"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Tycoon Phishing Kit","verdict":"phishing","severity":"high","comment":"","tags":["phishing","tycoon","aitm"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.6.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","size":89501,"data":"","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-04T12:46:37.604283Z","times_seen":444825,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","fqdn":"eumsoft365.blob.core.windows.net","domain":"windows.net","tld":"net"},"ip":{"addr":"20.209.73.130","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"ae45311dad977fee62f9538e8d5ae5cf","sha1":"d2d3ffe007dc7189e308ba442260ee4a6186831c","sha256":"b6f717f576eac9186699d1b4e8a6067b4a8ee8d30251789dd5e5bf37f1b18214","sha512":"99783ca5f49bd9e03d5f78508328ab0bc5746566200fa5b60eb168049268276dbe54be03158bf225e35bf1f2660e05a5a6bdd97dccc861f234167a01719a65a0","ssdeep":"","tlshash":"4141e19bf0a250302336b07e53bf66803b37d1d7f0869924761c4ea47fd5a9742a1a86","size":2245,"data":"","first_seen":"2025-10-07T12:49:21.900536Z","last_seen":"2025-10-07T16:56:11.013942Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2ca03ad87885ab983541092b87adb299","sha1":"1a17f60bf776a8c468a185c1e8e985c41a50dc27","sha256":"8e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762","sha512":"13c412bd66747822c6938926de1c52b0d98659b2ed48249471ec0340f416645ea9114f06953f1ae5f177db03a5d62f1fb5d321b2c4eb17f3a1c865b0a274dc5c","ssdeep":"768:J1Z4iiyfiD78x6l42SWRV4HC0o10LEnM9OT81agZnEpnS:vZYDc6lXJd1mZpZEdS","tlshash":"19231ac5a19c605152a774c40d7f704b7463352a070d8aacf668e9eeecfcaea9039d7c","size":48316,"data":"","first_seen":"2023-03-07T01:31:53Z","last_seen":"2026-04-04T12:08:28.562789Z","times_seen":149562,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","fqdn":"eumsoft365.blob.core.windows.net","domain":"windows.net","tld":"net"},"ip":{"addr":"20.209.73.130","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":false,"md5":"8ef54f052a465272b6adc6624e00b55b","sha1":"535e7139d727b4241e8a6326121b270489aecdac","sha256":"95731cacaf28f0b76117a5024137c55fc1bebd7c604328f35e7ebde5a75dcde9","sha512":"70b653df24889f6bfc620d4deacc191ea07f62aa7ba32ff21bbd0a970953b18a22d35af853eb8278746830da51fc26445c60fceffcdd353a683ad7b475ccc7a8","ssdeep":"1536:/NsaQIgyyaNHGYlkBuHnTEf6vyPIhHZQ8ZmGVnGPFqd4wH1FqDWuwQJKPvFwedim:1sVzC9i5ZngQJFZGKh/dDtpI","tlshash":"d7349657cd1b3e4a4b65623a26ecace50e0d47d9b0d200eec71af4c9dabc9259ce01dd","size":244236,"data":"","first_seen":"2025-10-07T12:49:21.902104Z","last_seen":"2025-10-07T16:56:11.017565Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","fqdn":"eumsoft365.blob.core.windows.net","domain":"windows.net","tld":"net"},"ip":{"addr":"20.209.73.130","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"The Netherlands","country_code":"NL"},"introduction_type":"eval","is_inline":false,"md5":"216c07ef6e4543a0de88cdc96235851b","sha1":"edc6dd209b6ca8929c339a9de56b51cdd7b59fe6","sha256":"78d50b7cb61e83d1330da1a0e137d879b5ebc098286191b24a289b13eb574772","sha512":"21f05c6535c508767fb18c277a8a27ce530246264192636dda6bd10633e12d916aff90713aae2d5f18f5768189df8f1c41661e8e5fc2a95e39ade6bc754163f2","ssdeep":"3072:f62lQVCpg7ncnlC9FrZyriIinHFlArYULOSPh+IinhFlArYULGuB7AUWPREJHnCF:f62lQVCpg7ncnlC9FrZyriIinHFhSPhM","tlshash":"5704e95b352508728efb22fb33b35788f93440275980d615bd7c96581f30e81a6b6fea","size":182278,"data":"","first_seen":"2025-10-07T12:49:21.903724Z","last_seen":"2025-10-07T16:56:11.015651Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"github.com/fent/randexp.js/releases/download/v0.4.3/randexp.min.js","fqdn":"github.com","domain":"github.com","tld":"com"},"ip":{"addr":"140.82.121.4","port":443,"asn":36459,"as":"GITHUB","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"6c20a2be8ba900bc0a7118893a2b1072","sha1":"ff7766fde1f33882c6e1c481ceed6f6588ea764c","sha256":"b1c42acd0288c435e95e00332476781532ed002cac6f3dcee9110ced30b31500","sha512":"8f80ad8adc44845d24e13d56738a2ca2a73ee6fcdc187542ba4aaebbf8817935d053a2acfb0d425b9cc0c582b5091e1c9fe16b90b3aa682187645067c267fc41","ssdeep":"192:LRSvXVHfVj+WdqfkkoKhUBhMAcT6iuvBiFj0gba6qiG2pPj:LQvXVHXiNkMAcT6i+4mgPj","tlshash":"ce22a58932933026af5391b440bf140af2f69589d45cade8ab29d1e27d7290d46f7f38","size":10245,"data":"","first_seen":"2024-05-30T22:56:13Z","last_seen":"2026-04-04T10:00:21.169738Z","times_seen":52169,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","fqdn":"eumsoft365.blob.core.windows.net","domain":"windows.net","tld":"net"},"ip":{"addr":"20.209.73.130","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"The Netherlands","country_code":"NL"},"introduction_type":"eval","is_inline":false,"md5":"c174706fa1d526902cfcd6c9e241b454","sha1":"e604c56a11dce4592ba0d76971558950fb9141da","sha256":"f99f25d3d6555ab45b71909dce3289eb9fd2584f7f787aedfe1548297fbbccba","sha512":"c8af196b8a7f8332ebb02e6efe7e5e1987fb2d4a9717951f79f6113989276ff32d9359ea47ec3115ef20f951623a6d1b252efd50b3f19bd1bd0fe73e6b7e1b4e","ssdeep":"","tlshash":"153168da94b140301272817d17bf3e567a3e1547908acd74ff0c4b74bf8b39a51a62d9","size":1554,"data":"","first_seen":"2025-10-07T12:49:21.905344Z","last_seen":"2025-10-07T16:56:11.010748Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","fqdn":"eumsoft365.blob.core.windows.net","domain":"windows.net","tld":"net"},"ip":{"addr":"20.209.73.130","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"The Netherlands","country_code":"NL"},"introduction_type":"scriptElement","is_inline":true,"md5":"747d4a01e3808be582570dc371b01c40","sha1":"91e3dff763b3bea2bed8fd308fc804a6846e3efd","sha256":"6550f568ed82a18ce85fda6276cd66e71e3ef1bb3379affac91d2b411ec12701","sha512":"645e5e1f3935c8039552b4bde8ae72ac05ccb2241fe7a00e8d0a157d31a4344418e17497d9e9c99ec4241c340c3077c78131bac1f03e88ee08acf3563cac413c","ssdeep":"6144:5n/CqzgIy2SHKZ/nQCzT99RC/vrmsPqWmoVJIK4IwyEa0DuoY5GYJzqbcGU6Xg:5n/a+9qIWmUJqSEaKevJubcGU6Xg","tlshash":"a694afc7c6b3583f039fd6211d1b48eb2c23a9d6fc9fa508ae8c5bc117ac4a9464b745","size":448234,"data":"","first_seen":"2025-10-07T12:49:21.908001Z","last_seen":"2025-10-07T16:56:11.012156Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"eb67e0be7cf4d9563752ffaca7ff5a2b","sha1":"f435fc38689593f09131fac9b796f6c9e186b6d0","sha256":"afacd0289f54a502b8c9c42c9d083e2e6da27e6421b88ac7f46ee52d18547b09","sha512":"d2c1e31a5af6df355721401b3f6b2f7c55eba758eab4a020c10e5d8ebdf085b8a685c238e87fd7ba57335c526ef3d78e88e9178cf26a4d8b3b9d8eb71455dfa2","ssdeep":"3072:Rh1ruUGcBIwsVzC9i5ZngQJFZGKh/dDtpA:9rHjsz/pA","tlshash":"8364e717cd473e0a4762a22626ec9ce55e1d43c9b19200edf62de1cacff89169ce21dd","size":334158,"data":"","first_seen":"2025-10-07T12:49:21.909609Z","last_seen":"2025-10-07T16:56:11.019589Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]},"http":[{"url":{"schema":"https","addr":"github.com/fent/randexp.js/releases/download/v0.4.3/randexp.min.js","fqdn":"github.com","domain":"github.com","tld":"com"},"ip":{"addr":"140.82.121.4","port":443,"asn":36459,"as":"GITHUB","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:51.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"github.com","organization":""},"issuer":{"commonName":"Sectigo ECC Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Wed, 05 Feb 2025 00:00:00 GMT","end":"Thu, 05 Feb 2026 23:59:59 GMT"},"fingerprint":{"sha1":"E4:33:71:DD:D6:91:4A:75:B6:1F:9E:4F:74:6D:9B:F0:DD:26:FC:3A","sha256":"B8:BB:81:87:68:33:87:39:42:04:5A:8D:F8:F0:62:19:E0:06:02:EB:CB:43:84:C7:AB:C2:4F:18:37:9C:87:F5"}}},"request":{"raw":"GET /fent/randexp.js/releases/download/v0.4.3/randexp.min.js HTTP/1.1\r\nHost: github.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Tue, 07 Oct 2025 12:48:52 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 0\r\nvary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With\r\nlocation: https://release-assets.githubusercontent.com/github-production-release-asset/2925284/11f3acf8-4ccb-11e6-8ce4-c179c0a212de?sp=r\u0026sv=2018-11-09\u0026sr=b\u0026spr=https\u0026se=2025-10-07T13%3A33%3A58Z\u0026rscd=attachment%3B+filename%3Drandexp.min.js\u0026rsct=application%2Foctet-stream\u0026skoid=96c2d410-5711-43a1-aedd-ab1947aa7ab0\u0026sktid=398a6654-997b-47e9-b12b-9515b896b4de\u0026skt=2025-10-07T12%3A33%3A07Z\u0026ske=2025-10-07T13%3A33%3A58Z\u0026sks=b\u0026skv=2018-11-09\u0026sig=ho29gUiymd3GJOw6eN4kksf4SnOKkVqxWgeCGge6S%2BY%3D\u0026jwt=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmVsZWFzZS1hc3NldHMuZ2l0aHVidXNlcmNvbnRlbnQuY29tIiwia2V5Ijoia2V5MSIsImV4cCI6MTc1OTg0MTYzMiwibmJmIjoxNzU5ODQxMzMyLCJwYXRoIjoicmVsZWFzZWFzc2V0cHJvZHVjdGlvbi5ibG9iLmNvcmUud2luZG93cy5uZXQifQ.TzJWLn_PGUxha0YM1Md3ymdXs9QxXMNrZV1Xb0y27YI\u0026response-content-disposition=attachment%3B%20filename%3Drandexp.min.js\u0026response-content-type=application%2Foctet-stream\r\ncache-control: no-cache\r\nstrict-transport-security: max-age=31536000; includeSubdomains; preload\r\nx-frame-options: deny\r\nx-content-type-options: nosniff\r\nx-xss-protection: 0\r\nreferrer-policy: no-referrer-when-downgrade\r\ncontent-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com github.githubassets.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com wss://alive-staging.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com marketplace-screenshots.githubusercontent.com/ copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/\r\nserver: github.com\r\nx-github-request-id: 906B:3848DA:7AD57E0:633D767:68E50C33\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GitHub Pages","description":"GitHub Pages is a static site hosting service.","website":"https://pages.github.com/","common_platform_enumeration":"","icon":"GitHub.svg","categories":["PaaS"]}],"data":{"size":10245,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T12:49:17.462299Z","times_seen":13332134,"resource_available":true,"data":null}},"time_used":802,"timings":{"blocked":301,"dns":0,"connect":37,"send":0,"wait":192,"receive":0,"ssl":268},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:51.735Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 17 Sep 2025 19:09:23 GMT","end":"Tue, 16 Dec 2025 20:08:48 GMT"},"fingerprint":{"sha1":"E5:FA:6E:21:DA:AB:92:8F:E0:CB:31:C2:87:D4:E2:CE:9F:23:BF:C1","sha256":"E8:C7:D4:A8:29:E6:45:C0:C5:E3:AD:6A:90:36:30:4A:D7:2E:7C:F7:8F:57:44:E8:3B:2D:AF:F6:80:F7:4B:46"}}},"request":{"raw":"GET /ajax/libs/crypto-js/4.1.1/crypto-js.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Oct 2025 12:48:51 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 13972\r\ncf-ray: 98ad83e38d6b56a2-OSL\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"61182885-3694\"\r\nlast-modified: Sat, 14 Aug 2021 20:33:09 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 440199\r\nexpires: Sun, 27 Sep 2026 12:48:51 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=JNm0QaIE%2BI1lzZjPZ8lwVuwFMQcgeugSK3E03jxAMQACJBOTn6htOpvoQaO4rN9Bu8FBqRzjNmlf%2FFenm2zNaMH97m5uVMUkOiS45ekmrEaE0eTKbaPtyl0aRJ8xcqHulW9DFtYz\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":48316,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (48316), with no line terminators","md5":"2ca03ad87885ab983541092b87adb299","sha1":"1a17f60bf776a8c468a185c1e8e985c41a50dc27","sha256":"8e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762","sha512":"13c412bd66747822c6938926de1c52b0d98659b2ed48249471ec0340f416645ea9114f06953f1ae5f177db03a5d62f1fb5d321b2c4eb17f3a1c865b0a274dc5c","ssdeep":"768:J1Z4iiyfiD78x6l42SWRV4HC0o10LEnM9OT81agZnEpnS:vZYDc6lXJd1mZpZEdS","tlshash":"19231ac5a19c605152a774c40d7f704b7463352a070d8aacf668e9eeecfcaea9039d7c","first_seen":"2023-03-07T01:31:53Z","last_seen":"2026-04-04T12:08:28.562789Z","times_seen":149562,"resource_available":true,"data":null}},"time_used":86,"timings":{"blocked":29,"dns":0,"connect":1,"send":0,"wait":18,"receive":1,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aadcdn.msauth.net/shared/1.0/content/images/picker_verify_call_c2616792e1950f83fdef6e72dab97293.svg","fqdn":"aadcdn.msauth.net","domain":"msauth.net","tld":"net"},"ip":{"addr":"13.107.246.53","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:51.748Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aadcdn.msauth.net","organization":"Microsoft Corporation"},"issuer":{"commonName":"DigiCert SHA2 Secure Server CA","organization":"DigiCert Inc"},"validity":{"start":"Mon, 28 Jul 2025 00:00:00 GMT","end":"Wed, 28 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"FF:9B:EB:1C:67:06:2E:93:BC:79:55:74:B6:82:53:3C:50:21:26:7B","sha256":"21:77:2D:8F:0F:B1:62:5C:35:BD:66:73:05:73:69:CA:62:6D:29:7C:0D:25:22:FA:B7:49:1B:E0:74:90:82:32"}}},"request":{"raw":"GET /shared/1.0/content/images/picker_verify_call_c2616792e1950f83fdef6e72dab97293.svg HTTP/1.1\r\nHost: aadcdn.msauth.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Oct 2025 12:48:51 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 1173\r\ncache-control: public, max-age=31536000\r\ncontent-encoding: gzip\r\nlast-modified: Wed, 24 May 2023 10:11:48 GMT\r\netag: 0x8DB5C3F4981BE7A\r\nx-ms-request-id: 64d575f2-901e-007a-4599-36e1bb000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,ETag,Last-Modified,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\nx-azure-ref: 20251007T124851Z-r1f97b5f7b5pbspnhC1SVGz1zg00000004yg00000000grbp\r\nx-fd-int-roxy-purgeid: 0\r\nx-cache: TCP_HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Azure Front Door","description":"Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.","website":"https://docs.microsoft.com/en-us/azure/frontdoor/","common_platform_enumeration":"","icon":"Azure.svg","categories":["Load balancers"]},{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]}],"data":{"size":2905,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"fe87496cc7a44412f7893a72099c120a","sha1":"a0c1458c08a815df63d3cb0406d60be6607ca699","sha256":"55ce3b0ce5bc71339308107982cd7671f96014256ded0be36dc8062e64c847f1","sha512":"e527c6cd2a3d79ca828a9126e8ff7009a540aa764082750d4fa8207c2b8439ca1fdc4459e935d708dc59dcffe55fe45188eb5e266d1b745fca7588501bc0117d","ssdeep":"","tlshash":"3451db770328eede9190e7881b65b20eb7f4896474bb81d08f879c46ec06bb7913cd60","first_seen":"2023-05-04T15:09:09Z","last_seen":"2026-04-04T10:00:21.168453Z","times_seen":89833,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":51,"dns":0,"connect":0,"send":0,"wait":10,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aadcdn.msauth.net/shared/1.0/content/images/backgrounds/4_eae2dd7eb3a55636dc2d74f4fa4c386e.svg","fqdn":"aadcdn.msauth.net","domain":"msauth.net","tld":"net"},"ip":{"addr":"13.107.246.53","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:52.516Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aadcdn.msauth.net","organization":"Microsoft Corporation"},"issuer":{"commonName":"DigiCert SHA2 Secure Server CA","organization":"DigiCert Inc"},"validity":{"start":"Mon, 28 Jul 2025 00:00:00 GMT","end":"Wed, 28 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"FF:9B:EB:1C:67:06:2E:93:BC:79:55:74:B6:82:53:3C:50:21:26:7B","sha256":"21:77:2D:8F:0F:B1:62:5C:35:BD:66:73:05:73:69:CA:62:6D:29:7C:0D:25:22:FA:B7:49:1B:E0:74:90:82:32"}}},"request":{"raw":"GET /shared/1.0/content/images/backgrounds/4_eae2dd7eb3a55636dc2d74f4fa4c386e.svg HTTP/1.1\r\nHost: aadcdn.msauth.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Oct 2025 12:48:52 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 8703\r\ncache-control: public, max-age=31536000\r\ncontent-encoding: gzip\r\nlast-modified: Wed, 16 Jul 2025 19:21:44 GMT\r\netag: 0x8DDC49E00296993\r\nx-ms-request-id: 4e98b7c6-001e-0036-20e3-324e26000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,ETag,Last-Modified,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\nx-azure-ref: 20251007T124852Z-r1f97b5f7b5pbspnhC1SVGz1zg00000004yg00000000grd6\r\nx-fd-int-roxy-purgeid: 0\r\nx-cache: TCP_HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Azure Front Door","description":"Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.","website":"https://docs.microsoft.com/en-us/azure/frontdoor/","common_platform_enumeration":"","icon":"Azure.svg","categories":["Load balancers"]},{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]}],"data":{"size":46579,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"145a07dcb971527a82b8d95ca2a1a3ee","sha1":"8b5baca5e87693484035d4e7bfd5eebbd73ac931","sha256":"b7872b9635702c64d0e30f951372d3d62383f52a0f3f01497d9c429e4c292338","sha512":"cbf9fbafc5f4e69bc348077ce16a6a8266e8b70802954506436a56d4a411c56244fce3bcf492467d31462e6e4d133ce8d9f967708bea50cf46ea9eed88ad1165","ssdeep":"768:stFVOr1cBhgbydHDaQTzHdLqKyIpFIo9JRMkgArZQn:stKpcBhgbydHDaQTzHdLqKyIpFIcJRMP","tlshash":"5823249ce16ca97ed54dc2fcc64b68b8310e41eba550835d906b6f0f29b85cb384dbe1","first_seen":"2025-08-13T09:49:20.296327Z","last_seen":"2026-04-04T12:44:07.9589Z","times_seen":11559,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aadcdn.msauth.net/shared/1.0/content/images/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg","fqdn":"aadcdn.msauth.net","domain":"msauth.net","tld":"net"},"ip":{"addr":"13.107.246.53","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:52.567Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aadcdn.msauth.net","organization":"Microsoft Corporation"},"issuer":{"commonName":"DigiCert SHA2 Secure Server CA","organization":"DigiCert Inc"},"validity":{"start":"Mon, 28 Jul 2025 00:00:00 GMT","end":"Wed, 28 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"FF:9B:EB:1C:67:06:2E:93:BC:79:55:74:B6:82:53:3C:50:21:26:7B","sha256":"21:77:2D:8F:0F:B1:62:5C:35:BD:66:73:05:73:69:CA:62:6D:29:7C:0D:25:22:FA:B7:49:1B:E0:74:90:82:32"}}},"request":{"raw":"GET /shared/1.0/content/images/microsoft_logo_564db913a7fa0ca42727161c6d031bef.svg HTTP/1.1\r\nHost: aadcdn.msauth.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Oct 2025 12:48:52 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 1435\r\ncache-control: public, max-age=31536000\r\ncontent-encoding: gzip\r\nlast-modified: Wed, 24 May 2023 10:11:48 GMT\r\netag: 0x8DB5C3F4911527F\r\nx-ms-request-id: d621f4a2-a01e-0018-3bca-2e6b8e000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,ETag,Last-Modified,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\nx-azure-ref: 20251007T124852Z-r1f97b5f7b5pbspnhC1SVGz1zg00000004yg00000000grda\r\nx-fd-int-roxy-purgeid: 0\r\nx-cache: TCP_HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Azure Front Door","description":"Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.","website":"https://docs.microsoft.com/en-us/azure/frontdoor/","common_platform_enumeration":"","icon":"Azure.svg","categories":["Load balancers"]},{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]}],"data":{"size":3651,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ee5c8d9fb6248c938fd0dc19370e90bd","sha1":"d01a22720918b781338b5bbf9202b241a5f99ee4","sha256":"04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a","sha512":"c77215b729d0e60c97f075998e88775cd0f813b4d094dc2fdd13e5711d16f4e5993d4521d0fbd5bf7150b0dbe253d88b1b1ff60901f053113c5d7c1919852d58","ssdeep":"","tlshash":"6371117b132887dae9d4a78c2e997b8d377095c4b1b24290874328a5bc086f7f038d60","first_seen":"2023-04-06T08:44:24Z","last_seen":"2026-04-04T12:00:16.362544Z","times_seen":122145,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aadcdn.msauth.net/shared/1.0/content/images/arrow_left_43280e0ba671a1d8b5e34f1931c4fe4b.svg","fqdn":"aadcdn.msauth.net","domain":"msauth.net","tld":"net"},"ip":{"addr":"13.107.246.53","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:51.739Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aadcdn.msauth.net","organization":"Microsoft Corporation"},"issuer":{"commonName":"DigiCert SHA2 Secure Server CA","organization":"DigiCert Inc"},"validity":{"start":"Mon, 28 Jul 2025 00:00:00 GMT","end":"Wed, 28 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"FF:9B:EB:1C:67:06:2E:93:BC:79:55:74:B6:82:53:3C:50:21:26:7B","sha256":"21:77:2D:8F:0F:B1:62:5C:35:BD:66:73:05:73:69:CA:62:6D:29:7C:0D:25:22:FA:B7:49:1B:E0:74:90:82:32"}}},"request":{"raw":"GET /shared/1.0/content/images/arrow_left_43280e0ba671a1d8b5e34f1931c4fe4b.svg HTTP/1.1\r\nHost: aadcdn.msauth.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Oct 2025 12:48:51 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 276\r\ncache-control: public, max-age=31536000\r\ncontent-encoding: gzip\r\nlast-modified: Wed, 24 May 2023 10:11:45 GMT\r\netag: 0x8DB5C3F47A00633\r\nx-ms-request-id: c4d31b31-d01e-0047-18aa-2ea80d000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,ETag,Last-Modified,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\nx-azure-ref: 20251007T124851Z-r1f97b5f7b5pbspnhC1SVGz1zg00000004yg00000000grbk\r\nx-fd-int-roxy-purgeid: 0\r\nx-cache: TCP_HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]},{"name":"Azure Front Door","description":"Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.","website":"https://docs.microsoft.com/en-us/azure/frontdoor/","common_platform_enumeration":"","icon":"Azure.svg","categories":["Load balancers"]}],"data":{"size":513,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a9cc2824ef3517b6c4160dcf8ff7d410","sha1":"8db9aebad84ca6e4225bfdd2458ff3821cc4f064","sha256":"34f9db946e89f031a80dfca7b16b2b686469c9886441261ae70a44da1dfa2d58","sha512":"aa3ddab0a1cff9533f9a668aba4fb5e3d75ed9f8aff8a1caa4c29f9126d85ff4529e82712c0119d2e81035d1ce1cc491ff9473384d211317d4d00e0e234ad97f","ssdeep":"","tlshash":"29f0598a41c8fb142ce08050dff8ea28540270c3fb4e5008b1922b18e2ef383f6406f5","first_seen":"2023-04-19T20:10:52Z","last_seen":"2026-04-04T10:00:21.16571Z","times_seen":29645,"resource_available":false,"data":null}},"time_used":140,"timings":{"blocked":60,"dns":2,"connect":8,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aadcdn.msauth.net/shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg","fqdn":"aadcdn.msauth.net","domain":"msauth.net","tld":"net"},"ip":{"addr":"13.107.246.53","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:51.745Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aadcdn.msauth.net","organization":"Microsoft Corporation"},"issuer":{"commonName":"DigiCert SHA2 Secure Server CA","organization":"DigiCert Inc"},"validity":{"start":"Mon, 28 Jul 2025 00:00:00 GMT","end":"Wed, 28 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"FF:9B:EB:1C:67:06:2E:93:BC:79:55:74:B6:82:53:3C:50:21:26:7B","sha256":"21:77:2D:8F:0F:B1:62:5C:35:BD:66:73:05:73:69:CA:62:6D:29:7C:0D:25:22:FA:B7:49:1B:E0:74:90:82:32"}}},"request":{"raw":"GET /shared/1.0/content/images/close_790189870c9543725dc3f5a15fb25e46.svg HTTP/1.1\r\nHost: aadcdn.msauth.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Oct 2025 12:48:51 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 190\r\ncache-control: public, max-age=31536000\r\ncontent-encoding: gzip\r\nlast-modified: Wed, 24 May 2023 10:11:46 GMT\r\netag: 0x8DB5C3F4823AA6E\r\nx-ms-request-id: 1acc9fb5-901e-0003-5a8b-2e558d000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,ETag,Last-Modified,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\nx-azure-ref: 20251007T124851Z-r1f97b5f7b5pbspnhC1SVGz1zg00000004yg00000000grbn\r\nx-fd-int-roxy-purgeid: 0\r\nx-cache: TCP_HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Azure Front Door","description":"Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.","website":"https://docs.microsoft.com/en-us/azure/frontdoor/","common_platform_enumeration":"","icon":"Azure.svg","categories":["Load balancers"]},{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]}],"data":{"size":270,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"40eb39126300b56bf66c20ee75b54093","sha1":"83678d94097257eb474713dec49e8094f49d2e2a","sha256":"765709425a5b9209e875dccf2217d3161429d2d48159fc1df7b253b77c1574f4","sha512":"9c9cd1752a404e71772003469550d3b4eff8346a4e47be131bb2b9cb8dd46dbef4863c52a63a9c63989f9abee775cb63c111add7afa9d4dfc7a4d95ae30f9c6e","ssdeep":"","tlshash":"10d05b765358f94cd108859505d4355111d7b08479df4029f7861529b4067d7fd34b5e","first_seen":"2023-04-29T00:14:17Z","last_seen":"2026-04-04T10:00:21.167163Z","times_seen":43472,"resource_available":false,"data":null}},"time_used":67,"timings":{"blocked":54,"dns":0,"connect":0,"send":0,"wait":10,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aadcdn.msauth.net/shared/1.0/content/images/picker_verify_fluent_authenticator_59892f1e05e3adf9fd2f71b42d92a27f.svg","fqdn":"aadcdn.msauth.net","domain":"msauth.net","tld":"net"},"ip":{"addr":"13.107.246.53","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:51.747Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aadcdn.msauth.net","organization":"Microsoft Corporation"},"issuer":{"commonName":"DigiCert SHA2 Secure Server CA","organization":"DigiCert Inc"},"validity":{"start":"Mon, 28 Jul 2025 00:00:00 GMT","end":"Wed, 28 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"FF:9B:EB:1C:67:06:2E:93:BC:79:55:74:B6:82:53:3C:50:21:26:7B","sha256":"21:77:2D:8F:0F:B1:62:5C:35:BD:66:73:05:73:69:CA:62:6D:29:7C:0D:25:22:FA:B7:49:1B:E0:74:90:82:32"}}},"request":{"raw":"GET /shared/1.0/content/images/picker_verify_fluent_authenticator_59892f1e05e3adf9fd2f71b42d92a27f.svg HTTP/1.1\r\nHost: aadcdn.msauth.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Oct 2025 12:48:51 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 2407\r\ncache-control: public, max-age=31536000\r\ncontent-encoding: gzip\r\nlast-modified: Wed, 24 May 2023 10:11:49 GMT\r\netag: 0x8DB5C3F499A9B99\r\nx-ms-request-id: 3e900b84-e01e-0060-709b-368064000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,ETag,Last-Modified,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\nx-azure-ref: 20251007T124851Z-r1f97b5f7b5pbspnhC1SVGz1zg00000004yg00000000grbm\r\nx-fd-int-roxy-purgeid: 0\r\nx-cache: TCP_HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Azure Front Door","description":"Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.","website":"https://docs.microsoft.com/en-us/azure/frontdoor/","common_platform_enumeration":"","icon":"Azure.svg","categories":["Load balancers"]},{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]}],"data":{"size":7390,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"b59c16ca9bf156438a8a96d45e33db64","sha1":"4e51b7d3477414b220f688adabd76d3ae6472ee3","sha256":"a7ee799dd5b6f6dbb70b043b766362a6724e71458f9839306c995f06b218c2f8","sha512":"2c7095e4b819bc5caa06811a55c0dae6706970f981806dcf7fd41f744c1dc6a955657a8e57829b39b376b892e8173e8a41f683d329cfbbd0ec4d4019b10e52ff","ssdeep":"192:cdEMK4RwidEMK4Rwbwm6xiD7x9m9t6EQ3FabrItDWOO6DcA:cdEMVwidEMVwbwtxiDHmP6lFeItDWOOc","tlshash":"66e178d532f9e1d85482bbfd6681f1bc3e533dfaaa32d99083d55c19cc8a00c45ad8a2","first_seen":"2023-04-19T22:15:10Z","last_seen":"2026-04-04T10:00:21.167814Z","times_seen":103189,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":52,"dns":0,"connect":0,"send":0,"wait":10,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"release-assets.githubusercontent.com/github-production-release-asset/2925284/11f3acf8-4ccb-11e6-8ce4-c179c0a212de?sp=r\u0026sv=2018-11-09\u0026sr=b\u0026spr=https\u0026se=2025-10-07T13%3A33%3A58Z\u0026rscd=attachment%3B+filename%3Drandexp.min.js\u0026rsct=application%2Foctet-stream\u0026skoid=96c2d410-5711-43a1-aedd-ab1947aa7ab0\u0026sktid=398a6654-997b-47e9-b12b-9515b896b4de\u0026skt=2025-10-07T12%3A33%3A07Z\u0026ske=2025-10-07T13%3A33%3A58Z\u0026sks=b\u0026skv=2018-11-09\u0026sig=ho29gUiymd3GJOw6eN4kksf4SnOKkVqxWgeCGge6S%2BY%3D\u0026jwt=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmVsZWFzZS1hc3NldHMuZ2l0aHVidXNlcmNvbnRlbnQuY29tIiwia2V5Ijoia2V5MSIsImV4cCI6MTc1OTg0MTYzMiwibmJmIjoxNzU5ODQxMzMyLCJwYXRoIjoicmVsZWFzZWFzc2V0cHJvZHVjdGlvbi5ibG9iLmNvcmUud2luZG93cy5uZXQifQ.TzJWLn_PGUxha0YM1Md3ymdXs9QxXMNrZV1Xb0y27YI\u0026response-content-disposition=attachment%3B%20filename%3Drandexp.min.js\u0026response-content-type=application%2Foctet-stream","fqdn":"release-assets.githubusercontent.com","domain":"release-assets.githubusercontent.com","tld":"githubusercontent.com"},"ip":{"addr":"185.199.110.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:52.234Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 07 Mar 2025 00:00:00 GMT","end":"Sat, 07 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"8C:FF:59:E5:8E:C4:FA:76:FE:AF:2D:C5:C0:D4:13:6A:77:2D:F9:91","sha256":"7D:11:22:EA:96:98:52:34:1E:8D:D9:2B:CC:0C:7E:CC:00:96:30:D1:4D:A7:34:D7:CA:42:D5:B5:4A:2B:20:97"}}},"request":{"raw":"GET /github-production-release-asset/2925284/11f3acf8-4ccb-11e6-8ce4-c179c0a212de?sp=r\u0026sv=2018-11-09\u0026sr=b\u0026spr=https\u0026se=2025-10-07T13%3A33%3A58Z\u0026rscd=attachment%3B+filename%3Drandexp.min.js\u0026rsct=application%2Foctet-stream\u0026skoid=96c2d410-5711-43a1-aedd-ab1947aa7ab0\u0026sktid=398a6654-997b-47e9-b12b-9515b896b4de\u0026skt=2025-10-07T12%3A33%3A07Z\u0026ske=2025-10-07T13%3A33%3A58Z\u0026sks=b\u0026skv=2018-11-09\u0026sig=ho29gUiymd3GJOw6eN4kksf4SnOKkVqxWgeCGge6S%2BY%3D\u0026jwt=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmVsZWFzZS1hc3NldHMuZ2l0aHVidXNlcmNvbnRlbnQuY29tIiwia2V5Ijoia2V5MSIsImV4cCI6MTc1OTg0MTYzMiwibmJmIjoxNzU5ODQxMzMyLCJwYXRoIjoicmVsZWFzZWFzc2V0cHJvZHVjdGlvbi5ibG9iLmNvcmUud2luZG93cy5uZXQifQ.TzJWLn_PGUxha0YM1Md3ymdXs9QxXMNrZV1Xb0y27YI\u0026response-content-disposition=attachment%3B%20filename%3Drandexp.min.js\u0026response-content-type=application%2Foctet-stream HTTP/1.1\r\nHost: release-assets.githubusercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Tue, 07 Dec 2021 16:38:45 GMT\r\netag: \"0x8D9B9A009499A1E\"\r\nserver: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0\r\nx-ms-request-id: 38bb28af-201e-0012-0ee5-f09a85000000\r\nx-ms-version: 2018-11-09\r\nx-ms-creation-time: Tue, 17 Aug 2021 14:57:31 GMT\r\nx-ms-blob-content-md5: bCCivoupALwKcRiJOisQcg==\r\nx-ms-lease-status: unlocked\r\nx-ms-lease-state: available\r\nx-ms-blob-type: BlockBlob\r\nx-ms-server-encrypted: true\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\nage: 3641\r\ndate: Tue, 07 Oct 2025 12:48:52 GMT\r\nx-served-by: cache-iad-kiad7000080-IAD, cache-hel1410023-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 8831, 0\r\nx-timer: S1759841332.280758,VS0,VE1\r\ncontent-disposition: attachment; filename=randexp.min.js\r\ncontent-type: application/octet-stream\r\ncontent-length: 10245\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]},{"name":"Microsoft HTTPAPI:2.0","description":"Microsoft HTTPAPI is a kernel-mode HTTP driver in the Windows operating system responsible for handling HTTP requests and responses with efficiency, scalability, and security.","website":"https://learn.microsoft.com/en-us/windows/win32/http/http-api-start-page","common_platform_enumeration":"","icon":"Microsoft.svg","categories":["Web servers"]}],"data":{"size":10245,"size_decoded":0,"mime_type":"application/octet-stream","magic":"JavaScript source, ASCII text, with very long lines (10017)","md5":"6c20a2be8ba900bc0a7118893a2b1072","sha1":"ff7766fde1f33882c6e1c481ceed6f6588ea764c","sha256":"b1c42acd0288c435e95e00332476781532ed002cac6f3dcee9110ced30b31500","sha512":"8f80ad8adc44845d24e13d56738a2ca2a73ee6fcdc187542ba4aaebbf8817935d053a2acfb0d425b9cc0c582b5091e1c9fe16b90b3aa682187645067c267fc41","ssdeep":"192:LRSvXVHfVj+WdqfkkoKhUBhMAcT6iuvBiFj0gba6qiG2pPj:LQvXVHXiNkMAcT6i+4mgPj","tlshash":"ce22a58932933026af5391b440bf140af2f69589d45cade8ab29d1e27d7290d46f7f38","first_seen":"2024-05-30T22:56:13Z","last_seen":"2026-04-04T10:00:21.169738Z","times_seen":52169,"resource_available":true,"data":null}},"time_used":99,"timings":{"blocked":41,"dns":1,"connect":13,"send":0,"wait":16,"receive":1,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"eumsoft365.blob.core.windows.net/favicon.ico","fqdn":"eumsoft365.blob.core.windows.net","domain":"windows.net","tld":"net"},"ip":{"addr":"20.209.73.130","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"The Netherlands","country_code":"NL"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:52.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.blob.core.windows.net","organization":"Microsoft Corporation"},"issuer":{"commonName":"Microsoft Azure RSA TLS Issuing CA 07","organization":"Microsoft Corporation"},"validity":{"start":"Thu, 02 Oct 2025 02:12:43 GMT","end":"Tue, 31 Mar 2026 02:12:43 GMT"},"fingerprint":{"sha1":"E0:8F:76:14:D3:63:18:74:1E:DD:A4:C0:63:34:1F:10:76:E0:9C:43","sha256":"26:9C:1C:C9:7F:BF:5C:A3:DE:97:85:13:AA:BB:6F:5E:31:F8:42:56:A5:97:49:67:32:9A:60:6E:53:DE:C5:DF"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: eumsoft365.blob.core.windows.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 400 One of the request inputs is out of range.\r\nContent-Length: 226\r\nContent-Type: application/xml\r\nServer: Blob Service Version 1.0 Microsoft-HTTPAPI/2.0\r\nx-ms-request-id: 3df3c942-c01e-002f-3f88-372582000000\r\nDate: Tue, 07 Oct 2025 12:48:51 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"400","status_text":"One of the request inputs is out of range.","fingerprints":[{"name":"Microsoft HTTPAPI:2.0","description":"Microsoft HTTPAPI is a kernel-mode HTTP driver in the Windows operating system responsible for handling HTTP requests and responses with efficiency, scalability, and security.","website":"https://learn.microsoft.com/en-us/windows/win32/http/http-api-start-page","common_platform_enumeration":"","icon":"Microsoft.svg","categories":["Web servers"]}],"data":{"size":226,"size_decoded":0,"mime_type":"application/xml","magic":"XML 1.0 document, ASCII text","md5":"94cb720639c6e3fe9ec00e949f40975b","sha1":"a1179fdbe99d01fcfac272f4bf895f271cf50f39","sha256":"138260ec3ac882744b04d34d8d830d7a3f865647fac0234eec7d83ae04417dfa","sha512":"615cb9d05be6c8dc8127a49891b1712041af2472f4d3540780c32b4a423bc3ba900b40b725ed7230d182486db272b8d6bed25a9c3807e372859e7caabe264420","ssdeep":"","tlshash":"6ad0a711a104a917c2a815307faeb354d73772d218e01028569149922f817b10a3d609","first_seen":"2025-10-07T12:49:21.893349Z","last_seen":"2025-10-07T12:49:21.893349Z","times_seen":1,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Tycoon Phishing Kit","verdict":"phishing","severity":"high","comment":"","tags":["phishing","tycoon","aitm"],"meta":null}]}},{"url":{"schema":"https","addr":"aadcdn.msauth.net/shared/1.0/content/images/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg","fqdn":"aadcdn.msauth.net","domain":"msauth.net","tld":"net"},"ip":{"addr":"13.107.246.53","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:51.743Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aadcdn.msauth.net","organization":"Microsoft Corporation"},"issuer":{"commonName":"DigiCert SHA2 Secure Server CA","organization":"DigiCert Inc"},"validity":{"start":"Mon, 28 Jul 2025 00:00:00 GMT","end":"Wed, 28 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"FF:9B:EB:1C:67:06:2E:93:BC:79:55:74:B6:82:53:3C:50:21:26:7B","sha256":"21:77:2D:8F:0F:B1:62:5C:35:BD:66:73:05:73:69:CA:62:6D:29:7C:0D:25:22:FA:B7:49:1B:E0:74:90:82:32"}}},"request":{"raw":"GET /shared/1.0/content/images/signin-options_3e3f6b73c3f310c31d2c4d131a8ab8c6.svg HTTP/1.1\r\nHost: aadcdn.msauth.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Oct 2025 12:48:51 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 621\r\ncache-control: public, max-age=31536000\r\ncontent-encoding: gzip\r\nlast-modified: Wed, 24 May 2023 10:11:49 GMT\r\netag: 0x8DB5C3F49ED96E0\r\nx-ms-request-id: dfd0ee1a-d01e-000a-7330-3667e1000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\naccess-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,ETag,Last-Modified,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding\r\naccess-control-allow-origin: *\r\nx-azure-ref: 20251007T124851Z-r1f97b5f7b5pbspnhC1SVGz1zg00000004yg00000000grbt\r\nx-fd-int-roxy-purgeid: 0\r\nx-cache: TCP_HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]},{"name":"Azure Front Door","description":"Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.","website":"https://docs.microsoft.com/en-us/azure/frontdoor/","common_platform_enumeration":"","icon":"Azure.svg","categories":["Load balancers"]}],"data":{"size":1592,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4e48046ce74f4b89d45037c90576bfac","sha1":"4a41b3b51ed787f7b33294202da72220c7cd2c32","sha256":"8e6db1634f1812d42516778fc890010aa57f3e39914fb4803df2c38abbf56d93","sha512":"b2bba2a68edaa1a08cfa31ed058afb5e6a3150aabb9a78db9f5ccc2364186d44a015986a57707b57e2cc855fa7da57861ad19fc4e7006c2c239c98063fe903cf","ssdeep":"","tlshash":"b931787f43b45ae7239017741760626c13f4ee917169d0b4dba30c9a8d4bd33327843a","first_seen":"2023-04-14T20:16:11Z","last_seen":"2026-04-04T10:00:21.166405Z","times_seen":71699,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":62,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"logincdn.msauth.net/shared/5/images/picker_verify_email_59759b80e24a89c8cd02.svg","fqdn":"logincdn.msauth.net","domain":"msauth.net","tld":"net"},"ip":{"addr":"13.107.246.53","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:51.750Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"identitycdn.msauth.net","organization":"Microsoft Corporation"},"issuer":{"commonName":"Microsoft Azure RSA TLS Issuing CA 08","organization":"Microsoft Corporation"},"validity":{"start":"Tue, 26 Aug 2025 15:35:08 GMT","end":"Sun, 22 Feb 2026 15:35:08 GMT"},"fingerprint":{"sha1":"85:16:20:07:73:F8:24:8D:FA:7D:38:79:96:84:4D:32:C3:DC:93:D3","sha256":"BE:DB:BE:F6:C7:30:AC:4F:E5:97:0C:32:1D:0F:0A:F8:45:CD:3F:B9:09:20:F9:59:7F:65:17:E0:8D:FF:E1:A9"}}},"request":{"raw":"GET /shared/5/images/picker_verify_email_59759b80e24a89c8cd02.svg HTTP/1.1\r\nHost: logincdn.msauth.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 07 Oct 2025 12:48:51 GMT\r\ncontent-type: image/svg+xml\r\ncontent-length: 212\r\ncache-control: public, max-age=31536000\r\ncontent-encoding: gzip\r\nlast-modified: Thu, 31 Oct 2024 23:10:34 GMT\r\netag: \"0x8DCFA01392516B3\"\r\nx-ms-request-id: 3d38089f-301e-0001-254f-37a327000000\r\nx-ms-version: 2018-03-28\r\naccess-control-expose-headers: Accept-Ranges,Cache-Control,Content-Encoding,Content-Length,Content-Range,Content-Type,Date,ETag,Last-Modified,Server,x-ms-request-id,x-ms-version\r\naccess-control-allow-origin: *\r\nx-azure-ref: 20251007T124851Z-r1f97b5f7b5l85vghC1SVGp74w00000006zg000000009psd\r\nx-fd-int-roxy-purgeid: 0\r\nx-cache: TCP_HIT\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Azure Front Door","description":"Azure Front Door is a scalable and secure entry point for fast delivery of your global web applications.","website":"https://docs.microsoft.com/en-us/azure/frontdoor/","common_platform_enumeration":"","icon":"Azure.svg","categories":["Load balancers"]},{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]}],"data":{"size":268,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"59759b80e24a89c8cd029b14700e646d","sha1":"651b1921c99e143d3c242de3faacfb9ad51dbb53","sha256":"b02b5df3ecd59d6cd90c60878683477532cbfc24660028657f290bdc7bc774b5","sha512":"0812da742877dd00a2466911a64458b15b4910b648a5e98a4acf1d99e1220e1f821aaf18bde145df185d5f72f5a4b2114ea264f906135f3d353440f343d52d2e","ssdeep":"","tlshash":"f6d02bf0c2b8f40c8304d61513f874e025fa74c8819d091cf5c0361668449e7bcb93be","first_seen":"2023-08-10T00:42:40Z","last_seen":"2026-04-04T10:00:21.170476Z","times_seen":40606,"resource_available":false,"data":null}},"time_used":207,"timings":{"blocked":95,"dns":70,"connect":14,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-3.6.0.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.2.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","date":"2025-10-07T12:48:51.709Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo Public Server Authentication CA DV E36","organization":"Sectigo Limited"},"validity":{"start":"Thu, 12 Jun 2025 00:00:00 GMT","end":"Fri, 26 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"56:36:FB:D3:E0:9E:71:88:98:A4:C9:34:94:9B:43:3A:C4:C5:1E:BE","sha256":"9A:64:20:6F:F5:DC:F1:8A:D6:B2:D0:93:C2:7E:62:86:0B:1A:D5:24:CF:CE:4A:9F:4C:0D:F1:FB:F2:A0:A8:1E"}}},"request":{"raw":"GET /jquery-3.6.0.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://eumsoft365.blob.core.windows.net/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-15d9d\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Tue, 07 Oct 2025 12:48:51 GMT\r\nage: 1830921\r\nx-served-by: cache-lga21931-LGA, cache-hel1410022-HEL\r\nx-cache: HIT, HIT\r\nx-cache-hits: 71, 31641\r\nx-timer: S1759841332.818526,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 30875\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":89501,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65447)","md5":"8fb8fee4fcc3cc86ff6c724154c49c42","sha1":"b82d238d4e31fdf618bae8ac11a6c812c03dd0d4","sha256":"ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e","sha512":"f3de1813a4160f9239f4781938645e1589b876759cd50b7936dbd849a35c38ffaed53f6a61dbdd8a1cf43cf4a28aa9fffbfddeec9a3811a1bb4ee6df58652b31","ssdeep":"1536:DjExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1v9:DIh8GgP3hujzwbhd3XvSiDQ47GKn","tlshash":"069309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","first_seen":"2023-03-07T01:02:13Z","last_seen":"2026-04-04T12:46:37.604283Z","times_seen":444825,"resource_available":true,"data":null}},"time_used":226,"timings":{"blocked":103,"dns":21,"connect":13,"send":0,"wait":14,"receive":6,"ssl":64},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"eumsoft365.blob.core.windows.net/vingmed-as/vingmed.html","fqdn":"eumsoft365.blob.core.windows.net","domain":"windows.net","tld":"net"},"ip":{"addr":"20.209.73.130","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"The Netherlands","country_code":"NL"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-07T12:48:51.304Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.blob.core.windows.net","organization":"Microsoft Corporation"},"issuer":{"commonName":"Microsoft Azure RSA TLS Issuing CA 07","organization":"Microsoft Corporation"},"validity":{"start":"Thu, 02 Oct 2025 02:12:43 GMT","end":"Tue, 31 Mar 2026 02:12:43 GMT"},"fingerprint":{"sha1":"E0:8F:76:14:D3:63:18:74:1E:DD:A4:C0:63:34:1F:10:76:E0:9C:43","sha256":"26:9C:1C:C9:7F:BF:5C:A3:DE:97:85:13:AA:BB:6F:5E:31:F8:42:56:A5:97:49:67:32:9A:60:6E:53:DE:C5:DF"}}},"request":{"raw":"GET /vingmed-as/vingmed.html HTTP/1.1\r\nHost: eumsoft365.blob.core.windows.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Length: 448251\r\nContent-Type: text/html\r\nContent-MD5: 6QM1A07krJk51KSC3YDyoA==\r\nLast-Modified: Tue, 07 Oct 2025 11:28:03 GMT\r\nETag: 0x8DE0594949D950E\r\nServer: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0\r\nx-ms-request-id: 3df3c149-c01e-002f-3a88-372582000000\r\nx-ms-version: 2009-09-19\r\nx-ms-lease-status: unlocked\r\nx-ms-blob-type: BlockBlob\r\nDate: Tue, 07 Oct 2025 12:48:50 GMT\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Azure","description":"Azure is a cloud computing service for building, testing, deploying, and managing applications and services through Microsoft-managed data centers.","website":"https://azure.microsoft.com","common_platform_enumeration":"","icon":"Azure.svg","categories":["PaaS"]},{"name":"Microsoft HTTPAPI:2.0","description":"Microsoft HTTPAPI is a kernel-mode HTTP driver in the Windows operating system responsible for handling HTTP requests and responses with efficiency, scalability, and security.","website":"https://learn.microsoft.com/en-us/windows/win32/http/http-api-start-page","common_platform_enumeration":"","icon":"Microsoft.svg","categories":["Web servers"]}],"data":{"size":448251,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (63000)","md5":"e90335034ee4ac9939d4a482dd80f2a0","sha1":"deb5c289bf2bfe1006e7e8e79b9cce1789f358b5","sha256":"084d01188473718af36ad797fe4bcfbb147f24a4d45c488eb295520bab58a4fe","sha512":"c2e810088aebd2404139e30dc67e3671e350321e1b147d8924f8b1de33727ce3d36716ef70a772725e5649f74e17016cc3a47604faf1afcdae83239415e66b4c","ssdeep":"6144:cn/CqzgIy2SHKZ/nQCzT99RC/vrmsPqWmoVJIK4IwyEa0DuoY5GYJzqbcGU6Xw:cn/a+9qIWmUJqSEaKevJubcGU6Xw","tlshash":"2194afc7c6b3583f039fd6211d1b48eb2c23a9d6fc9fa508ae8c5bc117ac4a9464b745","first_seen":"2025-10-07T12:49:21.898802Z","last_seen":"2025-10-07T16:56:11.002355Z","times_seen":2,"resource_available":false,"data":null}},"time_used":258,"timings":{"blocked":58,"dns":8,"connect":19,"send":0,"wait":31,"receive":110,"ssl":28},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - Anti-debugging code","verdict":"suspicious","severity":"low","comment":"","tags":["suspicious"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Tycoon Phishing Kit","verdict":"phishing","severity":"high","comment":"","tags":["phishing","tycoon","aitm"],"meta":null}]}}]}