{"report_id":"2e826984-e2b4-4b9f-8245-7c895cfba96c","version":6,"status":"done","tags":[],"date":"2026-02-22T15:14:59Z","url":{"schema":"https","addr":"ngrhook.com/","fqdn":"ngrhook.com","domain":"ngrhook.com","tld":"com"},"ip":{"addr":"104.21.30.39","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"ngrhook.com/","fqdn":"ngrhook.com","domain":"ngrhook.com","tld":"com"},"title":"NGR Hook - Free Game Enhancement Software for Apex Legends and Fortnite","dom":{"size":14578,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (494)","md5":"46affa3f39fc391004bdc1899765c40d","sha1":"b40e281e4f270586ebf05d0e3fee5f5952e773d9","sha256":"187d81ada30c75a56ecdf46288710c343219cb35eb08ff32019d791b2a397917","sha512":"82bb5529e1e02f1dcdf18404d30177c368b0bc593f481f2f9082016115a64e2539c6095faeb8f6493c73158357936198a1ee9409d4765210d4a8f9a509826588","ssdeep":"384:hR/Lc/m/vhBfFN2cOOHocdChvpx2azq3ngzHTPOxU2:FN2cOOH7kDaIS","tlshash":"2f6284377af0346b00d381926a9923a73fa4d157e90b660072bc479c6fd3d92c9bb15e","dom_hash":"domhash10b5dc50be4ddeb72fd3e515bd662198","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"ngrhook.com/","fqdn":"ngrhook.com","domain":"ngrhook.com","tld":"com"},"ip":{"addr":"104.21.30.39","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-29T15:14:59Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ngrhook.com","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-02-09","domain_rank":0,"first_seen":"2026-02-22T15:14:59.926532Z","last_seen":"2026-02-22T15:14:59.926532Z","alert_count":0,"request_count":4,"received_data":29250,"sent_data":1735,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"ngrhook.com/script.js","fqdn":"ngrhook.com","domain":"ngrhook.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"1fa5f7894817cee421448d656409f4cf","sha1":"ff0a3bda6e6ceefaee164cf9553abe400ab57452","sha256":"add7a748fa7db7a00f0171789d6a70a8e0a8a79f815336d36b04194a35dea4a0","sha512":"ead8fea79c2c11f3fd5779ddb5a4deb102ea20a9e8aba761fdef329e34f65f63a042afce27372b7c3facd18ba7efd87f0aad58b4ab4eb2c96c03e7e044cfab38","ssdeep":"","tlshash":"ea115b1b69b0307b907772b6c28f578479250047444aca133decc78a2f90ab96e71ee9","size":1092,"data":"","first_seen":"2026-02-22T15:15:03.224424Z","last_seen":"2026-02-22T17:21:39.497535Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"ngrhook.com/style.css","fqdn":"ngrhook.com","domain":"ngrhook.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://ngrhook.com/","date":"2026-02-22T15:14:34.312Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ngrhook.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Feb 2026 19:05:57 GMT","end":"Sun, 10 May 2026 20:01:40 GMT"},"fingerprint":{"sha1":"4E:D9:E4:87:08:FB:8A:57:6A:85:6E:05:E0:13:76:86:04:23:FE:31","sha256":"47:00:71:4E:08:69:98:5B:C6:29:60:7C:25:88:3F:37:90:22:24:0E:C0:2E:A5:C5:1A:D1:1C:4A:E4:C8:2D:D1"}}},"request":{"raw":"GET /style.css HTTP/1.1\r\nHost: ngrhook.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ngrhook.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Feb 2026 15:14:34 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\npriority: u=2,i=?0\r\nlast-modified: Tue, 10 Feb 2026 00:21:04 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OUItOVGv0A3gmGi4KZBB3U4Q7%2Fw4sZnMG9KYi2Kr0l5CCuST6Ez4%2Bl2g10LaiIFTtKi6mCc2mHjm4XoTwWr5tEHQ53y4352Zfiuy\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d1f6f147a1f9cae-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10838,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"97aa745167af2f38623890e81aa119ec","sha1":"fc5e18071399b83b90dfb18afe012aa46b464d5c","sha256":"8386004d898e3aba11849cfbff506bcbce082660d98420cb3aef6cbc65ec4324","sha512":"00442aabdfc8ac88f9b8d5f9a1b95ecb0e26ee0a755d910a169d1c97d243b7c10fcada61f6a9c58507b8ae30e78954cfee43a8b2751679b28ba9d51403971523","ssdeep":"192:qSDzc5K6OaD1zJL76YiFKhPPVxlQEJtQxlXk59Pm4sIdzlEx3ft9fT3elpeBhd:qS9XaLH4FXEJtQuPCEzEJ","tlshash":"222221992a74a178782fe5787697db88736cd442cd0ecd796be4101c9ec83f811a2f4c","first_seen":"2026-02-22T15:15:03.219549Z","last_seen":"2026-02-22T17:21:39.495667Z","times_seen":2,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":88,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ngrhook.com/favicon.svg","fqdn":"ngrhook.com","domain":"ngrhook.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://ngrhook.com/","date":"2026-02-22T15:14:34.493Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ngrhook.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Feb 2026 19:05:57 GMT","end":"Sun, 10 May 2026 20:01:40 GMT"},"fingerprint":{"sha1":"4E:D9:E4:87:08:FB:8A:57:6A:85:6E:05:E0:13:76:86:04:23:FE:31","sha256":"47:00:71:4E:08:69:98:5B:C6:29:60:7C:25:88:3F:37:90:22:24:0E:C0:2E:A5:C5:1A:D1:1C:4A:E4:C8:2D:D1"}}},"request":{"raw":"GET /favicon.svg HTTP/1.1\r\nHost: ngrhook.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ngrhook.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Feb 2026 15:14:34 GMT\r\ncontent-type: image/svg+xml\r\nserver: cloudflare\r\npriority: u=6,i=?0\r\nlast-modified: Tue, 10 Feb 2026 00:17:54 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=fcFElehDqkFfuzKLqamISbHP4mBiEXlVtnGFrrG3YAPqzPHNZOQauQFvduJGTa%2FHW9iyZYw3FQZTKNX%2FESiX40XCEUofzms8OnG9\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d1f6f159c659cae-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":295,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"e93f51bf8ad79702c13091902fe7227a","sha1":"e4d74f6087bbb90255e34e34d62fdbdea154fd1d","sha256":"dd2165cd99d06e4988bb3b6914ecffbd3792de06d834b01f2b5fe62f8e0a2804","sha512":"bbd99d2de137b94ec8ffc6fc931ae1e30860b55e5db5b714a6fa9fb50355eeee9e3454a1c10e89db985eccef980ee68f0472e4d3e7ec491d8b1ebfe3c7155f5f","ssdeep":"","tlshash":"29e02b79e3bde016990062c98f6e74db212f70ca12860345759d1a045e1d5db7ee21fd","first_seen":"2026-02-22T15:15:03.220628Z","last_seen":"2026-02-22T17:21:39.491617Z","times_seen":2,"resource_available":false,"data":null}},"time_used":78,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":77,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ngrhook.com/","fqdn":"ngrhook.com","domain":"ngrhook.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-22T15:14:33.993Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ngrhook.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Feb 2026 19:05:57 GMT","end":"Sun, 10 May 2026 20:01:40 GMT"},"fingerprint":{"sha1":"4E:D9:E4:87:08:FB:8A:57:6A:85:6E:05:E0:13:76:86:04:23:FE:31","sha256":"47:00:71:4E:08:69:98:5B:C6:29:60:7C:25:88:3F:37:90:22:24:0E:C0:2E:A5:C5:1A:D1:1C:4A:E4:C8:2D:D1"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: ngrhook.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 22 Feb 2026 15:14:34 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Fri, 20 Feb 2026 02:18:26 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ANN5fa22MSZHR3QFXQ8YWXevmZGcGGiZPD%2B71iFI%2FsyA%2FaPFRACnUEByejnASYnwFRH2OmuXDOZBrP1FJI63ppqS7G6S62OYu2%2B2\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9d1f6f12eec6c3b8-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":14612,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (494)","md5":"48a8cf78e5105baf9c06b486b516421d","sha1":"95dd2b7b4f7fcb68904dffcc3c3cd09197821244","sha256":"ce2e5c2d789620147b9e10e96d2dff275790371a828d24bb3a04095e22c98d12","sha512":"159ae9624c89dc55d022f722fd08b51bd6f2b9fff7013c0e08b9e3ebebe93cbcc910e4285920640c0da5c8d6d6cdb60e7a7b885e854d357d046bd7dae47363c5","ssdeep":"384:PR/Lc/m/vhBfFN2cOOHlc8ChDpx2cNq3ngzHTPOxUO:3N2cOOH/qD6I6","tlshash":"6d6283377af0346b00d391926a9923a73fa4d147e90b660072bc479c6fd3d92c9bb15e","first_seen":"2026-02-22T15:15:03.22166Z","last_seen":"2026-02-22T17:21:39.493224Z","times_seen":2,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":68,"dns":43,"connect":8,"send":0,"wait":108,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ngrhook.com/script.js","fqdn":"ngrhook.com","domain":"ngrhook.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://ngrhook.com/","date":"2026-02-22T15:14:34.314Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ngrhook.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 09 Feb 2026 19:05:57 GMT","end":"Sun, 10 May 2026 20:01:40 GMT"},"fingerprint":{"sha1":"4E:D9:E4:87:08:FB:8A:57:6A:85:6E:05:E0:13:76:86:04:23:FE:31","sha256":"47:00:71:4E:08:69:98:5B:C6:29:60:7C:25:88:3F:37:90:22:24:0E:C0:2E:A5:C5:1A:D1:1C:4A:E4:C8:2D:D1"}}},"request":{"raw":"GET /script.js HTTP/1.1\r\nHost: ngrhook.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://ngrhook.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 22 Feb 2026 15:14:34 GMT\r\ncontent-type: text/javascript\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\nlast-modified: Tue, 10 Feb 2026 00:18:42 GMT\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=wEl1vlF4UZ5LUYqGfkOGlDJG04W97K0dKW%2BpleLB6dEQSzkXQjZFZQIF6%2Fkuy%2FWAR03ImtBD9ePdwfQD%2FHS0YrGMGBC6XxKSeFzf\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9d1f6f147a249cae-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1092,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text","md5":"1fa5f7894817cee421448d656409f4cf","sha1":"ff0a3bda6e6ceefaee164cf9553abe400ab57452","sha256":"add7a748fa7db7a00f0171789d6a70a8e0a8a79f815336d36b04194a35dea4a0","sha512":"ead8fea79c2c11f3fd5779ddb5a4deb102ea20a9e8aba761fdef329e34f65f63a042afce27372b7c3facd18ba7efd87f0aad58b4ab4eb2c96c03e7e044cfab38","ssdeep":"","tlshash":"ea115b1b69b0307b907772b6c28f578479250047444aca133decc78a2f90ab96e71ee9","first_seen":"2026-02-22T15:15:03.224424Z","last_seen":"2026-02-22T17:21:39.497535Z","times_seen":2,"resource_available":true,"data":null}},"time_used":81,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":81,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}