{"report_id":"2d6f38ed-98fb-4abc-a131-048005ed865a","version":6,"status":"done","tags":[],"date":"2024-12-13T14:09:45Z","url":{"schema":"http","addr":"62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","fqdn":"62.210.246.226","domain":"62.210.246.226","tld":""},"ip":{"addr":"62.210.246.226","port":0,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"final":{"url":{"schema":"http","addr":"62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","fqdn":"62.210.246.226","domain":"62.210.246.226","tld":"226"},"title":"Downloads - VideoLAN"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-02-21T14:09:45Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"62.210.246.226","ip":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":3,"request_count":2,"received_data":7685,"sent_data":792,"comment":"","tags":null,"fingerprints":null},{"fqdn":"images.videolan.org","ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"domain_registered":"2000-02-03","domain_rank":285541,"first_seen":"2012-10-13T23:07:28Z","last_seen":"2024-05-20T11:21:29Z","alert_count":0,"request_count":13,"received_data":80144,"sent_data":4623,"comment":"","tags":null,"fingerprints":null},{"fqdn":"get.videolan.org","ip":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"domain_registered":"2000-02-03","domain_rank":128564,"first_seen":"2014-12-17T16:27:52Z","last_seen":"2024-05-21T08:46:18Z","alert_count":0,"request_count":1,"received_data":3299,"sent_data":348,"comment":"","tags":null,"fingerprints":null},{"fqdn":"mirror.zetup.net","ip":{"addr":"109.205.222.4","port":443,"asn":50572,"as":"Nordlo Improve AB","country":"Sweden","country_code":"SE"},"domain_registered":"2007-03-28","domain_rank":514864,"first_seen":"2017-01-30T06:58:48Z","last_seen":"2024-03-12T16:05:48Z","alert_count":0,"request_count":1,"received_data":41446519,"sent_data":517,"comment":"","tags":null,"fingerprints":null}],"files":[{"md5":"dc64a9223176166e96f9563c2f745915","sha1":"cb387932d36de39c596ade3d0fd16f638eacc8b2","sha256":"b6a4e96eb93c7377051982bb453db662b9cbdc62167cc1a90c21ebb53aa4d7c2","sha512":"c58e1557098d9043520af5189cca2b2347123303c12817ed07e5558a7f5de8b5ae0e4673660699b9b4b1c0ed29bfbeee19a1a01fe557952a746b5549bef114d3","magic":"PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, Nullsoft Installer self-extracting archive, 7 sections","size":41446280,"url":{"schema":"https","addr":"mirror.zetup.net/videolan/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","fqdn":"mirror.zetup.net","domain":"zetup.net","tld":"net"},"ip":{"addr":"109.205.222.4","port":443,"asn":50572,"as":"Nordlo Improve AB","country":"Sweden","country_code":"SE"},"archive":null,"alerts":{"urlquery":null,"analyzer":null}}],"artifacts":{"windows_shortcuts":null,"files":[{"md5":"dc64a9223176166e96f9563c2f745915","sha1":"cb387932d36de39c596ade3d0fd16f638eacc8b2","sha256":"b6a4e96eb93c7377051982bb453db662b9cbdc62167cc1a90c21ebb53aa4d7c2","sha512":"c58e1557098d9043520af5189cca2b2347123303c12817ed07e5558a7f5de8b5ae0e4673660699b9b4b1c0ed29bfbeee19a1a01fe557952a746b5549bef114d3","magic":"PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, Nullsoft Installer self-extracting archive, 7 sections","size":41446280,"url":{"schema":"https","addr":"mirror.zetup.net/videolan/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","fqdn":"mirror.zetup.net","domain":"zetup.net","tld":"net"},"ip":{"addr":"109.205.222.4","port":443,"asn":50572,"as":"Nordlo Improve AB","country":"Sweden","country_code":"SE"},"archive":null,"alerts":{"urlquery":null,"analyzer":null}}],"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2024-12-13T14:09:19Z","timestamp":1734098959,"ip_dst":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"ip_src":{"addr":"172.18.0.8","port":41114,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Executable Download from dotted-quad Host","source":"{\"timestamp\":\"2024-12-13T14:09:19.616143+0000\",\"flow_id\":1861905904800105,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":41114,\"dest_ip\":\"62.210.246.226\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"exe.no.referer\",\"http.dottedquadhost\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016141,\"rev\":9,\"signature\":\"ET INFO Executable Download from dotted-quad Host\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"created_at\":[\"2013_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_04_09\"]}},\"http\":{\"hostname\":\"62.210.246.226\",\"url\":\"/vlc/3.0.12/win32/vlc-3.0.12-win32.exe\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":1216},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":696,\"bytes_toclient\":6196,\"start\":\"2024-12-13T14:09:19.561513+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-13","alert":"Sinkholed","trigger":"62.210.246.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-13","alert":"Sinkholed","trigger":"62.210.246.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","fqdn":"62.210.246.226","domain":"62.210.246.226","tld":"226"},"ip":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"879719250f03ae4d2f82282059969fcb","sha1":"b135b5690e9e2c2a7168c5c1c6e6036017ca22b0","sha256":"d3aac67a8fafc934de239602a45fa763755027dc10a8aa78d5631a6b3b1c0685","sha512":"fcb3da73dc8f6be0c3cad2571d607c20385f173be0ef1421f69eaa444eab596db0af21526e697bb7a8e00ce036d568cda9bc7989d8aa10380876f4d47273a51d","ssdeep":"","tlshash":"5a218c4f70f631524477717a2bfb81287a2b290b5009daa3bead87887f4053542e7f5c","size":1404,"data":"","first_seen":"2023-07-18T17:32:49Z","last_seen":"2025-08-11T10:40:05.903984Z","times_seen":18,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2024-12-13T14:09:19Z","timestamp":1734098959,"ip_dst":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"ip_src":{"addr":"172.18.0.8","port":41114,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Executable Download from dotted-quad Host","source":"{\"timestamp\":\"2024-12-13T14:09:19.616143+0000\",\"flow_id\":1861905904800105,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":41114,\"dest_ip\":\"62.210.246.226\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"exe.no.referer\",\"http.dottedquadhost\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016141,\"rev\":9,\"signature\":\"ET INFO Executable Download from dotted-quad Host\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"created_at\":[\"2013_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_04_09\"]}},\"http\":{\"hostname\":\"62.210.246.226\",\"url\":\"/vlc/3.0.12/win32/vlc-3.0.12-win32.exe\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":1216},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":696,\"bytes_toclient\":6196,\"start\":\"2024-12-13T14:09:19.561513+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","fqdn":"62.210.246.226","domain":"62.210.246.226","tld":"226"},"ip":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"eccb2837db318451723ecd4e5a793ff1","sha1":"bee5cacbe38c4a7e62abbff4ff5e302068f86c80","sha256":"cd540d3de253195215939e979807a3cc65adc346af98a2ae46e17a26a76cb4a4","sha512":"d09175b9e57d0e1930cf7eeb9a8613ecd2c65bc78ae6ec9a84d4973bb5ab59b5d92997e5489447b375d3337cfa0146d3c1e3982165e234069bccfd3d0391a978","ssdeep":"","tlshash":"0231b059baea105e41333239577f43057a24112b204cde1db99cb2a01f60527ffba6f7","size":1806,"data":"","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-01-29T18:11:45.587094Z","times_seen":19,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2024-12-13T14:09:19Z","timestamp":1734098959,"ip_dst":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"ip_src":{"addr":"172.18.0.8","port":41114,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Executable Download from dotted-quad Host","source":"{\"timestamp\":\"2024-12-13T14:09:19.616143+0000\",\"flow_id\":1861905904800105,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":41114,\"dest_ip\":\"62.210.246.226\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"exe.no.referer\",\"http.dottedquadhost\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016141,\"rev\":9,\"signature\":\"ET INFO Executable Download from dotted-quad Host\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"created_at\":[\"2013_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_04_09\"]}},\"http\":{\"hostname\":\"62.210.246.226\",\"url\":\"/vlc/3.0.12/win32/vlc-3.0.12-win32.exe\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":1216},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":696,\"bytes_toclient\":6196,\"start\":\"2024-12-13T14:09:19.561513+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"www.google-analytics.com/analytics.js","fqdn":"www.google-analytics.com","domain":"google-analytics.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f24128d0c9cba7be2916c693427a3483","sha1":"1b6397d496ea896ebc2018b01b995cee4f166029","sha256":"58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8","sha512":"c4950733b44e258bbc817ce6396f002caec1e11a6413fd0038c9baef2d5f1d992b1fd0ec52515aba52faedb52c28b996a7fc063f28a0f45f3aab5e2f91bf5be5","ssdeep":"96:gr5xyIhZ6pQ/d/bTQcFeqZVxNnR36Hc9lDJlQC8dA9Sa5fLtUB5roNiEP:gr58IhZ6pg/bTXVx9t689fN8INtEONig","tlshash":"7ea1cd9b39e650310332bfe91bfaa559b22937605220c161be0c915b7399233d3e1bec","size":4691,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-05-09T15:34:22.197122Z","times_seen":857002,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/js/jquery.min.js","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"555f7c172689da93edfa911d6d39d5be","sha1":"88eca36c7735f0429eb848b24fa6a3122d92852f","sha256":"1f0cf9a551a14b12bb37120b2ae9e718b30b259f662cbcf75c6c4fa3f706aa31","sha512":"5f4e95f216f6a9c4b456dcf0acd280009a2972138cbb3040b8d359fd00200bd51131668b419bdbd03c3207ee43c9b478d030518383152caca743dab7bde98450","ssdeep":"1536:dnu00HWWaRxkqJg09pYxoxDKMXJrg8hXXO4dK3kyfiLJBhdSZE+I+Qg7rbaN1RUM:ddkWgoBhcZRQgmWP2qe","tlshash":"f4932bdd72d2b03257ab30bd106f640ff2361959280d8850f268d8f9bc79a49a277f6d","size":92635,"data":"","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-04-20T12:53:27.736858Z","times_seen":30,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","fqdn":"62.210.246.226","domain":"62.210.246.226","tld":"226"},"ip":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"3b1bd11d068b50e64f41de47ba142c26","sha1":"48aa1521fcc4cc5db8d6f8a7bc90ef58fd1d5aa9","sha256":"9b34e94df0c34772930abf61009dac1804067c7fd1868208f296d508dabf02f9","sha512":"cb5d62f768e9e979126006ef10e091fedf0413494b03289968588b39487141cbbbdbc61a033c8f702ed3192d7c8e2dbc89cc734266a7398d686e09359d28c753","ssdeep":"","tlshash":"46e0260cfafa05411c37b03b23bf5628786e110b0245ce0475cc46c01f9662ac812a41","size":333,"data":"","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-01-29T18:11:45.58969Z","times_seen":19,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2024-12-13T14:09:19Z","timestamp":1734098959,"ip_dst":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"ip_src":{"addr":"172.18.0.8","port":41114,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Executable Download from dotted-quad Host","source":"{\"timestamp\":\"2024-12-13T14:09:19.616143+0000\",\"flow_id\":1861905904800105,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":41114,\"dest_ip\":\"62.210.246.226\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"exe.no.referer\",\"http.dottedquadhost\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016141,\"rev\":9,\"signature\":\"ET INFO Executable Download from dotted-quad Host\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"created_at\":[\"2013_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_04_09\"]}},\"http\":{\"hostname\":\"62.210.246.226\",\"url\":\"/vlc/3.0.12/win32/vlc-3.0.12-win32.exe\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":1216},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":696,\"bytes_toclient\":6196,\"start\":\"2024-12-13T14:09:19.561513+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"62.210.246.226/vlc/3.0.12/win32/sandbox%20eval%20code","fqdn":"62.210.246.226","domain":"62.210.246.226","tld":"226"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"92b651082ce234f66bb544e678befda3","sha1":"14c21c55ddce43b6f677caadf51d4ab98c6a3df8","sha256":"25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded","sha512":"b4fcbc037e0a3d91db2a624921e96b878e9e18dd998ad5649d77d7d053faf28b09c8725a0542aef702310bf85f3037b70985c274db8acabd021efb171d41f361","ssdeep":"","tlshash":"69c02be3f74421ae2f1156f2b810e043a2c62b015ae7c402f00e003f2440fea4eee1e8","size":147,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-05-09T15:34:22.198168Z","times_seen":858668,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","fqdn":"62.210.246.226","domain":"62.210.246.226","tld":"226"},"ip":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"6e93f3235e6cfd794c074c3f2c2a0ae1","sha1":"deb456660df8a5cda7633667ad6e158f28d8ff61","sha256":"642508c830e9c3ed9eefa3669f6e486b15d915855a13c1158a84edbf2f972363","sha512":"cfdf59b5e63a3a9635c34c2b76a8cf7dce01551bfdce24de73522f2191c4e6b9fc4193a3bed8adb83d19d97afae6b44f3a84806f1c41f4f118c736dc834f39b5","ssdeep":"","tlshash":"76d012bb22430403d42a9b1f6310f00d982aa42b22729a01bf0e63050f8221b80a44e4","size":265,"data":"","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-01-29T18:11:45.590619Z","times_seen":19,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2024-12-13T14:09:19Z","timestamp":1734098959,"ip_dst":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"ip_src":{"addr":"172.18.0.8","port":41114,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Executable Download from dotted-quad Host","source":"{\"timestamp\":\"2024-12-13T14:09:19.616143+0000\",\"flow_id\":1861905904800105,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":41114,\"dest_ip\":\"62.210.246.226\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"exe.no.referer\",\"http.dottedquadhost\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016141,\"rev\":9,\"signature\":\"ET INFO Executable Download from dotted-quad Host\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"created_at\":[\"2013_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_04_09\"]}},\"http\":{\"hostname\":\"62.210.246.226\",\"url\":\"/vlc/3.0.12/win32/vlc-3.0.12-win32.exe\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":1216},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":696,\"bytes_toclient\":6196,\"start\":\"2024-12-13T14:09:19.561513+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","fqdn":"62.210.246.226","domain":"62.210.246.226","tld":"226"},"ip":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"322a6796d1fb329363eb0d258a19ad23","sha1":"ae40e7391c92cda422980bbd5e13e26f393cf376","sha256":"4109c6ad3f3a2dd665cfcf7bc67310e89133bd26b7318de7943d828a6aeba904","sha512":"1854d889fcb32e9476c2be97979024cabe625e197ddeda1f09d96c484128b5921d4397ae837acbbfa07f6ba3e5845c71268db74c454c25cb51f167ef7c2ce689","ssdeep":"","tlshash":"c6d012b76a030007d4168b2f3300e008884be82b7632aa22bb4f670a2f0224741a04e8","size":239,"data":"","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-01-29T18:11:45.592926Z","times_seen":19,"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2024-12-13T14:09:19Z","timestamp":1734098959,"ip_dst":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"ip_src":{"addr":"172.18.0.8","port":41114,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Executable Download from dotted-quad Host","source":"{\"timestamp\":\"2024-12-13T14:09:19.616143+0000\",\"flow_id\":1861905904800105,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":41114,\"dest_ip\":\"62.210.246.226\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"exe.no.referer\",\"http.dottedquadhost\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016141,\"rev\":9,\"signature\":\"ET INFO Executable Download from dotted-quad Host\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"created_at\":[\"2013_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_04_09\"]}},\"http\":{\"hostname\":\"62.210.246.226\",\"url\":\"/vlc/3.0.12/win32/vlc-3.0.12-win32.exe\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":1216},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":696,\"bytes_toclient\":6196,\"start\":\"2024-12-13T14:09:19.561513+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/js/bootstrap.min.js","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"08727e57efbdac291aee21a4f2cd66e4","sha1":"18e6fda4302c81638b600d1849084762c37a48b6","sha256":"261e9641b228870b00cbc0c9a7692d6165e48e5427b7a6947e8218da93be0aad","sha512":"d82254607e58eb0c4c018e048c734f3ce14f646683b45ec8952af58d5af0205ef2d2e363ddba176189d56bae5c45b09b6a5f5a3bd2fbb1b588ab5b3ee5b40937","ssdeep":"192:TQXAxdn962JpAj4KQFiMAdrd+0iCovMQ4RvR09:TAADpA0Qq","tlshash":"67127248f350316102dbe9a151df0129713e6a5ced06907c795be6def8b6c0831a7f39","size":9020,"data":"","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-04-20T12:53:27.731935Z","times_seen":30,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","fqdn":"62.210.246.226","domain":"62.210.246.226","tld":""},"ip":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-12-13T14:09:19.593Z","timestamp":1734098959593,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /vlc/3.0.12/win32/vlc-3.0.12-win32.exe HTTP/1.1\r\nHost: 62.210.246.226\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 13 Dec 2024 14:09:19 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nX-Mirrors-Debug: dc3\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6043,"size_decoded":25748,"mime_type":"text/html; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"9c6225a659f2c6349365bc688bd06674","sha1":"c11b3e7f0728608b508fb586570183839cf2f7e4","sha256":"81e1f237af5ae8e5bc4d9b632fa805613de743f1c71d4124f08fd9ed10e947d3","sha512":"43384023afc46e168091e297bbf65f20fe4471aba5cb24eee6c22eaec2aa09c942433420d961a0a662b9f8bc9fe53e200a2cc8af87dd9bbe9c6b88d9f18e99bf","ssdeep":"192:puQpTzySbXBOc+vws1Hkqs+dR3nwLf8ZANFgwbq5lUwWVd98S+za+qGtX1IZih8h:EQpqs6pkR+181D0zSqDtPiTLDHZ","tlshash":"11c2212664f48c1f03229197ade197296f135103c2495dcd7aad1b6eefd2b027d232ee","first_seen":"2024-12-13T14:09:49.240555Z","last_seen":"2024-12-13T14:09:49.240555Z","times_seen":1,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":-1,"dns":0,"connect":26,"send":0,"wait":29,"receive":1,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"","description":"","date":"2024-12-13T14:09:19Z","timestamp":1734098959,"ip_dst":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"ip_src":{"addr":"172.18.0.8","port":41114,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO Executable Download from dotted-quad Host","source":"{\"timestamp\":\"2024-12-13T14:09:19.616143+0000\",\"flow_id\":1861905904800105,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.8\",\"src_port\":41114,\"dest_ip\":\"62.210.246.226\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"exe.no.referer\",\"http.dottedquadhost\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2016141,\"rev\":9,\"signature\":\"ET INFO Executable Download from dotted-quad Host\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_and_Server\"],\"created_at\":[\"2013_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Significant\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_04_09\"]}},\"http\":{\"hostname\":\"62.210.246.226\",\"url\":\"/vlc/3.0.12/win32/vlc-3.0.12-win32.exe\",\"http_user_agent\":\"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":200,\"length\":1216},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":6,\"bytes_toserver\":696,\"bytes_toclient\":6196,\"start\":\"2024-12-13T14:09:19.561513+0000\"}}"}],"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-13","alert":"Sinkholed","trigger":"62.210.246.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"62.210.246.226/download.css","fqdn":"62.210.246.226","domain":"62.210.246.226","tld":""},"ip":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:19.958Z","timestamp":1734098959958,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /download.css HTTP/1.1\r\nHost: 62.210.246.226\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 13 Dec 2024 14:09:20 GMT\r\nContent-Type: text/css\r\nLast-Modified: Tue, 07 Nov 2017 20:12:16 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nETag: W/\"5a0213a0-d6e\"\r\nX-Server: dc3\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1135,"size_decoded":3438,"mime_type":"text/css","magic":"ASCII text","md5":"680625d3e8accf25af8c46fd2a7dde9f","sha1":"b73d18160ea360319a40df43a2cd1908608b76b5","sha256":"570dcd3523549fcaaa13e032e0d44955699ef98292d2a768c12fdec2cd407c94","sha512":"75b0b0043bd3b4514ac9d8b64b7edd9aef2191d8cb4af696b8b89f2cd296967a452f386a000620b3df338e99510badfb7a1859c8f20282d5eb91d82da7ad911b","ssdeep":"","tlshash":"d76100976a730848b44a808c7faef78723695043921ec92d3fc8b35cdf855e4a561b8e","first_seen":"2024-12-13T14:09:49.243484Z","last_seen":"2025-01-11T08:02:15.548337Z","times_seen":4,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-12-13","alert":"Sinkholed","trigger":"62.210.246.226","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/style/style.min.css","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:19.957Z","timestamp":1734098959957,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /style/style.min.css HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://62.210.246.226/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:19 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 06 Nov 2024 11:40:09 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"672b5599-722e\"\r\nExpires: Fri, 20 Dec 2024 14:09:19 GMT\r\nCache-Control: max-age=604800, public, must-revalidate\r\nContent-Encoding: gzip\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7075,"size_decoded":29230,"mime_type":"text/css","magic":"ASCII text, with very long lines (29230), with no line terminators","md5":"8f4d87f19552a2abaa6140f0041448c3","sha1":"963b0fab208c3db89f929db8e481b6dbffaccd31","sha256":"cbdee8a2bdb1f46e2b0bc4dd460c51d76c7625e34bb2f5da65a61cef6f051b1e","sha512":"e72f8f1e86f596f04eb7f48f9f13979fc7e61b8f4dcde7f7908d02b4f34e1c5e4618ec33fb1c016f7d088f17631baee1f20158ef425b4852cc6cbc0363467717","ssdeep":"768:DIxqAQJEt4f+p4nl9vXwlgUcTagwYLHf3M:PTagwYjf3M","tlshash":"53d29661fa85501fb613847be0c2a6b57926485be113cfbbb93b74b8d6a119c0337722","first_seen":"2024-12-13T14:09:49.24541Z","last_seen":"2025-10-14T10:20:01.3216Z","times_seen":13,"resource_available":false,"data":null}},"time_used":85,"timings":{"blocked":21,"dns":10,"connect":26,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/js/bootstrap.min.js","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:19.962Z","timestamp":1734098959962,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/bootstrap.min.js HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://62.210.246.226/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:19 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 10 Aug 2016 12:17:31 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"57ab1b5b-233c\"\r\nExpires: Fri, 20 Dec 2024 14:09:19 GMT\r\nCache-Control: max-age=604800, public, must-revalidate\r\nContent-Encoding: gzip\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3278,"size_decoded":9020,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (8633)","md5":"08727e57efbdac291aee21a4f2cd66e4","sha1":"18e6fda4302c81638b600d1849084762c37a48b6","sha256":"261e9641b228870b00cbc0c9a7692d6165e48e5427b7a6947e8218da93be0aad","sha512":"d82254607e58eb0c4c018e048c734f3ce14f646683b45ec8952af58d5af0205ef2d2e363ddba176189d56bae5c45b09b6a5f5a3bd2fbb1b588ab5b3ee5b40937","ssdeep":"192:p9hot4YM/GNa4K/5+I/yikyi7nZ9d8XFD:p96Na4K/5+I/zkyMNUFD","tlshash":"cf127345b2a031f206dfaae4519e4105b13a5d2ce916907c78a7e6e63dbac0c317bf3d","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-04-20T12:53:27.731935Z","times_seen":30,"resource_available":true,"data":null}},"time_used":90,"timings":{"blocked":18,"dns":14,"connect":27,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/style/bootstrap.min.css","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:19.955Z","timestamp":1734098959955,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /style/bootstrap.min.css HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://62.210.246.226/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:19 GMT\r\nContent-Type: text/css\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Thu, 30 Mar 2023 05:32:08 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"64251ed8-15fbd\"\r\nExpires: Fri, 20 Dec 2024 14:09:19 GMT\r\nCache-Control: max-age=604800, public, must-revalidate\r\nContent-Encoding: gzip\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":18509,"size_decoded":90045,"mime_type":"text/css","magic":"ASCII text, with very long lines (65371)","md5":"77bd14a5b216badbc56e5b42ab8d1588","sha1":"f5569c88060eb1e7cf5113544923fd1c3ab5207b","sha256":"ec2cca978c1b6b1e195631a1c6743192154fbb9cc960d367ae2b711a8662f9aa","sha512":"2187575f4bb963c94e4fb3f95e8dd703b948058011c3d77821a783e18d66904825addadaf9cedba20fe1ab55d1e8097e392afb181da38e67ac8a8d46c35ad9bb","ssdeep":"768:4/BuHzS9F6hW2v6t/Hsd2VesQatcYEY4K33c6lY:J1vv6t/Hsd2CewKq","tlshash":"0b939660b62035aa70a3c6ac74d0ed832b195043d96a4ff7f56b66e44b499cb1733f09","first_seen":"2023-07-18T17:32:49Z","last_seen":"2025-10-14T10:20:01.33066Z","times_seen":23,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":25,"dns":10,"connect":27,"send":0,"wait":28,"receive":28,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/js/jquery.min.js","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:19.960Z","timestamp":1734098959960,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /js/jquery.min.js HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://62.210.246.226/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:19 GMT\r\nContent-Type: application/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Mon, 08 Aug 2022 14:30:02 GMT\r\nVary: Accept-Encoding\r\nETag: W/\"62f11dea-169db\"\r\nExpires: Fri, 20 Dec 2024 14:09:19 GMT\r\nCache-Control: max-age=604800, public, must-revalidate\r\nContent-Encoding: gzip\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37961,"size_decoded":92635,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32089)","md5":"555f7c172689da93edfa911d6d39d5be","sha1":"88eca36c7735f0429eb848b24fa6a3122d92852f","sha256":"1f0cf9a551a14b12bb37120b2ae9e718b30b259f662cbcf75c6c4fa3f706aa31","sha512":"5f4e95f216f6a9c4b456dcf0acd280009a2972138cbb3040b8d359fd00200bd51131668b419bdbd03c3207ee43c9b478d030518383152caca743dab7bde98450","ssdeep":"1536:dnu00HWWaRxkqJg09pYxoxDKMXJrg8hXXO4dK3kyfiLJBhdSZE+I+Qg7rbaN1RUM:ddkWgoBhcZRQgmWP2qe","tlshash":"f4932bdd72d2b03257ab30bd106f640ff2361959280d8850f268d8f9bc79a49a277f6d","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-04-20T12:53:27.736858Z","times_seen":30,"resource_available":true,"data":null}},"time_used":120,"timings":{"blocked":19,"dns":12,"connect":27,"send":0,"wait":29,"receive":33,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/images/logoGrey.png","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:19.972Z","timestamp":1734098959972,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/logoGrey.png HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://62.210.246.226/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:20 GMT\r\nContent-Type: image/png\r\nContent-Length: 1750\r\nConnection: keep-alive\r\nLast-Modified: Sun, 01 Oct 2017 17:25:03 GMT\r\nETag: \"59d124ef-6d6\"\r\nExpires: Fri, 20 Dec 2024 14:09:20 GMT\r\nCache-Control: max-age=604800, public, must-revalidate\r\nAccept-Ranges: bytes\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1750,"size_decoded":1750,"mime_type":"image/png","magic":"PNG image data, 183 x 62, 8-bit colormap, non-interlaced","md5":"27ec73f81f78d5776c5dcf16d6a0de23","sha1":"b85356a7941918edb4b449ceda09f1de70da7d67","sha256":"40e16c50025b79ba208f0989f642ed4e99d291583fd4e31b7a20deee4f8af586","sha512":"753b8640376316809ae695759931d7e851be066a2a0868ae8d38a177478c1cc6d6cdd9fe6e5710ceb2e70ba7aeac0dfa96f482e9a81e46f41f7f7914aff797c1","ssdeep":"","tlshash":"7e3108d08ce1aeea4b020e7296ad40f1fd0d18a78ed3b43af160af7c7850d491322817","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-04-20T12:53:27.749144Z","times_seen":31,"resource_available":false,"data":null}},"time_used":96,"timings":{"blocked":69,"dns":0,"connect":0,"send":0,"wait":26,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"get.videolan.org/sponsors/zetup.png","fqdn":"get.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"62.210.246.226","port":80,"asn":12876,"as":"Scaleway S.a.s.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:19.965Z","timestamp":1734098959965,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /sponsors/zetup.png HTTP/1.1\r\nHost: get.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://62.210.246.226/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 13 Dec 2024 14:09:20 GMT\r\nContent-Type: image/png\r\nContent-Length: 2972\r\nLast-Modified: Mon, 27 Feb 2017 14:26:00 GMT\r\nConnection: keep-alive\r\nETag: \"58b436f8-b9c\"\r\nExpires: Sun, 12 Jan 2025 14:09:20 GMT\r\nCache-Control: max-age=2592000, public, must-revalidate\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2972,"size_decoded":2972,"mime_type":"image/png","magic":"PNG image data, 137 x 43, 8-bit/color RGBA, non-interlaced","md5":"e4ea73126b260d17c00437a1cf9729e6","sha1":"7ae6223ffbfaf416b64dfaf7d6244aff86c0018f","sha256":"781f225a0d8c713ee408cd3bd592a63782352312b6edd14799e65b860b9ef1ad","sha512":"91c398fe91c5d0bf68341cd763b228d0ab2b9e956fcae48ec0c40f7718b0464ebd37a219df70b3d2b5ffbf26278dc9ca2d49359506bf2ae2f29a173e9dd590aa","ssdeep":"","tlshash":"32514cc513a366c42f9c5c53434e685d9005e72f9ba4e30c56e643367bd0098973ba96","first_seen":"2024-12-13T14:09:49.257261Z","last_seen":"2024-12-13T14:09:49.257261Z","times_seen":1,"resource_available":false,"data":null}},"time_used":202,"timings":{"blocked":77,"dns":51,"connect":26,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/images/paypal.png","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:19.970Z","timestamp":1734098959970,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/paypal.png HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://62.210.246.226/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:20 GMT\r\nContent-Type: image/png\r\nContent-Length: 1388\r\nConnection: keep-alive\r\nLast-Modified: Sat, 09 Jan 2016 18:31:58 GMT\r\nETag: \"5691521e-56c\"\r\nExpires: Fri, 20 Dec 2024 14:09:20 GMT\r\nCache-Control: max-age=604800, public, must-revalidate\r\nAccept-Ranges: bytes\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1388,"size_decoded":1388,"mime_type":"image/png","magic":"PNG image data, 45 x 27, 8-bit/color RGBA, non-interlaced","md5":"7ae1a12cd6deeca6817d0a816139346e","sha1":"725a256516f168ec1cf829b692b83b76e170dc08","sha256":"4cbe7b2870ab85066ad759fb500a05a58ab41fd3939ae961a2589a989e5f4c2d","sha512":"9bb6aad7264fedec2e79ae47e6abea9ba99f59899a28d67259c1a57e021a9ed9717d638c4be4bea4bca401526488b7942e81fa4b639856a2cd6904045c29a804","ssdeep":"","tlshash":"4621b6d78958b132d5b47f1406720240cf1f9aaddaaa062b4d8025b0b29e7a462922f8","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-01-29T18:11:45.560351Z","times_seen":21,"resource_available":false,"data":null}},"time_used":101,"timings":{"blocked":72,"dns":0,"connect":0,"send":0,"wait":28,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/images/logoOrange.png","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:19.964Z","timestamp":1734098959964,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/logoOrange.png HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://62.210.246.226/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:20 GMT\r\nContent-Type: image/png\r\nContent-Length: 2391\r\nConnection: keep-alive\r\nLast-Modified: Sun, 01 Oct 2017 17:25:03 GMT\r\nETag: \"59d124ef-957\"\r\nExpires: Fri, 20 Dec 2024 14:09:20 GMT\r\nCache-Control: max-age=604800, public, must-revalidate\r\nAccept-Ranges: bytes\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2391,"size_decoded":2391,"mime_type":"image/png","magic":"PNG image data, 183 x 62, 8-bit/color RGBA, non-interlaced","md5":"551a987e10aa5c46bed2009fb3e9ca0d","sha1":"acf3203ff5403970faeff6c28618e4496e3cd26d","sha256":"cf3f72ebd28769e43cbe313f5b098c5ab53df28ae1b1029c77bc2bfe5b387c4d","sha512":"15fae54f6b4ef54129f2257a95d9067859f694ba75453754298dd867e68443a046b7771bcfcddd78e50d0a17c2c8d4360d07e7809612f2ad86d891bafa1aebd6","ssdeep":"","tlshash":"be413b9a4800985ddd8970f51200dc4b987e0c528def866d7246dfbc3883ef7031a47a","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-04-20T12:53:27.720886Z","times_seen":25,"resource_available":false,"data":null}},"time_used":107,"timings":{"blocked":78,"dns":0,"connect":0,"send":0,"wait":29,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/style/images/donateBackground.png","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:20.265Z","timestamp":1734098960265,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /style/images/donateBackground.png HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://images.videolan.org/style/style.min.css\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:20 GMT\r\nContent-Type: image/png\r\nContent-Length: 85\r\nConnection: keep-alive\r\nLast-Modified: Sun, 01 Oct 2017 17:25:03 GMT\r\nETag: \"59d124ef-55\"\r\nExpires: Fri, 20 Dec 2024 14:09:20 GMT\r\nCache-Control: max-age=604800, public, must-revalidate\r\nAccept-Ranges: bytes\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":85,"size_decoded":85,"mime_type":"image/png","magic":"PNG image data, 1 x 72, 8-bit grayscale, non-interlaced","md5":"c8a543acca6777ab8ceb6eb9e3a4e915","sha1":"15759fbe0e663d33596f16701761e1674964c186","sha256":"685383e85fdce49ce5d10a2b775f2c65e6e205aef346c5c8a39ef2efec1a0297","sha512":"4c2091272f9cf555837a581c970f88bdbd02b90417c899a567fcc7b800c7794498513c6278c7b5177bffb5318c5c1d2ebf2098bdab1b2085e8e34c437ad3e4e5","ssdeep":"","tlshash":"72a012f21380ec38c148663b420d4464c592c30c061015050144923507263019542206","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-01-29T18:11:45.575707Z","times_seen":21,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/images/euro.png","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:20.267Z","timestamp":1734098960267,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/euro.png HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://62.210.246.226/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:20 GMT\r\nContent-Type: image/png\r\nContent-Length: 287\r\nConnection: keep-alive\r\nLast-Modified: Sun, 01 Oct 2017 17:25:02 GMT\r\nETag: \"59d124ee-11f\"\r\nExpires: Fri, 20 Dec 2024 14:09:20 GMT\r\nCache-Control: max-age=604800, public, must-revalidate\r\nAccept-Ranges: bytes\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":287,"size_decoded":287,"mime_type":"image/png","magic":"PNG image data, 20 x 20, 8-bit gray+alpha, non-interlaced","md5":"b08a9d7571732bb52bec326fd21ad5c9","sha1":"39454d440290b0d7518f5aa71f78c18d964489e2","sha256":"7b167ce1105068deaf00f6cce3ea3220a73de85d6e704e24d13753100344717c","sha512":"7f246d474b3d043bb507ee33d428f3fd035a41557fa94dd46bb661f40532e67c6507854de8c25718d508ab8c8b90a92c6ff49ecd6ff6e40e24e480f4871f8fc0","ssdeep":"","tlshash":"83d072d835409a26c78b06f2c5ba86b0e8de022e02420a0aa4a4a82c001a978ca5638b","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-04-20T12:53:27.751717Z","times_seen":31,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/images/dollar.png","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:20.272Z","timestamp":1734098960272,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/dollar.png HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://62.210.246.226/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:20 GMT\r\nContent-Type: image/png\r\nContent-Length: 318\r\nConnection: keep-alive\r\nLast-Modified: Sun, 01 Oct 2017 17:25:02 GMT\r\nETag: \"59d124ee-13e\"\r\nExpires: Fri, 20 Dec 2024 14:09:20 GMT\r\nCache-Control: max-age=604800, public, must-revalidate\r\nAccept-Ranges: bytes\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":318,"size_decoded":318,"mime_type":"image/png","magic":"PNG image data, 20 x 20, 8-bit gray+alpha, non-interlaced","md5":"89732a3c6d4cd6ad3323c820e7a8f2d6","sha1":"16708b0d9efa49161c6cbb015f49377f7c9c6e8f","sha256":"d2fd3448d72f305aaf8661f4acdf0af933a9d9f60d38514ce27cf9337af0cb0b","sha512":"109481253e1ab2354fc81c80ed6642adc87591702006ed10d6a677394c3e054fc00d2e7ba6e41be47780c2feb5c6b9aeaac623b7f0b117cd3463f51565741a6b","ssdeep":"","tlshash":"11e02dd9a048c00fc3e81af0ab1c832264ff0e7e8202d72e810a829d0020e9bc54c763","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-04-20T12:53:27.718075Z","times_seen":31,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/images/icons/social/facebook.svg","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:20.277Z","timestamp":1734098960277,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/icons/social/facebook.svg HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://images.videolan.org/style/style.min.css\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:20 GMT\r\nContent-Type: image/svg+xml\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 27 Apr 2016 12:25:02 GMT\r\nETag: W/\"5720af9e-247\"\r\nExpires: Fri, 20 Dec 2024 14:09:20 GMT\r\nCache-Control: max-age=604800, public, must-revalidate\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":394,"size_decoded":583,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f2e74d48b7d67ca10d7c42c606264819","sha1":"44befda1d6ef909f76cb1af46bf4acd3de2b394c","sha256":"0b6021ecbe5aa693d68f24dda7616daab700ef3d52d4511e51bc865fae0f52f0","sha512":"002b31756b857bd24176ea1b3506bb3be2418f2d348c5244175dbae848292a20db82a174eb807440ab5986b8329c0bced3118db142aa9e700516c73a6312763e","ssdeep":"","tlshash":"4df0ac585f25d0d8850d8280af79e4ccf01b30d6948314ccd799bd79c8a29f52d0056d","first_seen":"2024-12-13T14:09:49.269972Z","last_seen":"2026-04-20T12:53:27.711726Z","times_seen":16,"resource_available":false,"data":null}},"time_used":29,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":28,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/images/icons/social/twitter.svg","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:20.279Z","timestamp":1734098960279,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/icons/social/twitter.svg HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://images.videolan.org/style/style.min.css\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:20 GMT\r\nContent-Type: image/svg+xml\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 27 Apr 2016 12:25:02 GMT\r\nETag: W/\"5720af9e-410\"\r\nExpires: Fri, 20 Dec 2024 14:09:20 GMT\r\nCache-Control: max-age=604800, public, must-revalidate\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":617,"size_decoded":1040,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"5122652065de901690883946f46a9ac4","sha1":"994ca3f9208448a5c899c484bccaf2459e105f10","sha256":"f089d9a1e1c06166b3c51eef959fd24408357493901ffa4d68a8151292af146e","sha512":"3ebc536a175057bc9604ff319c9fb7aef22bed983e8614706f9b8168fb11e0d562b5202ce299a75138a9f40804e88f11941410040b4912d08b1abaa9dc838099","ssdeep":"","tlshash":"c3118ced4f6490d1648c6ea9fb6b49ce620b30bf6a92c08cd188a808c0a2da1db00f15","first_seen":"2024-12-13T14:09:49.27216Z","last_seen":"2025-10-14T10:20:01.33938Z","times_seen":13,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"images.videolan.org/images/favicon.ico","fqdn":"images.videolan.org","domain":"videolan.org","tld":"org"},"ip":{"addr":"213.36.253.2","port":80,"asn":12322,"as":"Free SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://62.210.246.226/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","date":"2024-12-13T14:09:20.324Z","timestamp":1734098960324,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /images/favicon.ico HTTP/1.1\r\nHost: images.videolan.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://62.210.246.226/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.25.4\r\nDate: Fri, 13 Dec 2024 14:09:20 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 1150\r\nConnection: keep-alive\r\nLast-Modified: Sat, 09 Jan 2016 18:31:57 GMT\r\nETag: \"5691521d-47e\"\r\nAccept-Ranges: bytes\r\nX-Clacks-Overhead: GNU Terry Pratchett\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1150,"size_decoded":1150,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"9c9964c95355aab3c179df77b9b9e558","sha1":"50e995f391853ed2b651a0c0ff5a2ee6a2421a21","sha256":"8f80f6042654d323d0b9012e5a66e6824c277cd9ba49a2bd997333e186aa2ac4","sha512":"db7c9ff754284dbfb6e90d0c666eddf41454373659c95551bec84fb8bae092585e113685770f4c61a88743ede45a6e05dde65a95a06f9fcd160ed0cf210e99a6","ssdeep":"","tlshash":"de2123ac28259f0ec7d040700038730189fb4d0f2669ae2b500c7e0a3de2ac834ed66f","first_seen":"2023-07-18T17:32:49Z","last_seen":"2026-04-20T12:53:27.750872Z","times_seen":42,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mirror.zetup.net/videolan/vlc/3.0.12/win32/vlc-3.0.12-win32.exe","fqdn":"mirror.zetup.net","domain":"zetup.net","tld":"net"},"ip":{"addr":"109.205.222.4","port":443,"asn":50572,"as":"Nordlo Improve AB","country":"Sweden","country_code":"SE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-12-13T14:09:25.336Z","timestamp":1734098965336,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"mirror.zetup.net","organization":""},"issuer":{"commonName":"R11","organization":"Let's Encrypt"},"validity":{"start":"Sun, 27 Oct 2024 14:16:43 GMT","end":"Sat, 25 Jan 2025 14:16:42 GMT"},"fingerprint":{"sha1":"6D:E7:7B:DC:A1:66:7A:B7:94:96:00:DB:CD:D1:EE:CE:82:24:4E:65","sha256":"09:D4:85:A0:55:68:FC:85:3F:DA:C7:68:7E:20:D8:8E:30:C3:AC:4A:54:31:10:39:16:CF:1D:10:2A:A7:B4:0F"}}},"request":{"raw":"GET /videolan/vlc/3.0.12/win32/vlc-3.0.12-win32.exe HTTP/1.1\r\nHost: mirror.zetup.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nDate: Fri, 13 Dec 2024 14:09:25 GMT\r\nContent-Type: text/plain\r\nContent-Length: 41446280\r\nLast-Modified: Mon, 10 May 2021 13:38:43 GMT\r\nConnection: keep-alive\r\nETag: \"60993763-2786b88\"\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":41446280,"size_decoded":41446280,"mime_type":"application/x-msdos-program","magic":"PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, Nullsoft Installer self-extracting archive, 7 sections","md5":"dc64a9223176166e96f9563c2f745915","sha1":"cb387932d36de39c596ade3d0fd16f638eacc8b2","sha256":"b6a4e96eb93c7377051982bb453db662b9cbdc62167cc1a90c21ebb53aa4d7c2","sha512":"c58e1557098d9043520af5189cca2b2347123303c12817ed07e5558a7f5de8b5ae0e4673660699b9b4b1c0ed29bfbeee19a1a01fe557952a746b5549bef114d3","ssdeep":"786432:wOLDRWJ9+kgIRXwIHuOHMCRL1TX0FFx7D0Njont8nk7B/7:NtkgQHPsCRL1gl7DyYtwoB/7","tlshash":"7e973359f0ab0ff2f755f5fc2e8526a12712e9d5c149e4d9f468a383ce70463278222e","first_seen":"2023-12-10T20:42:59Z","last_seen":"2024-12-13T14:09:49.275215Z","times_seen":2,"resource_available":false,"data":null}},"time_used":5335,"timings":{"blocked":41,"dns":0,"connect":7,"send":0,"wait":327,"receive":4926,"ssl":29},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}