Report - applesacxx.top/

Report Overview

URL

applesacxx.top/
IP

47.243.112.87

ASN

#45102 Alibaba US Technology Co., Ltd.
Submitted

2023-01-16T21:19:03Z

Access
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

1
Threat Detection Systems

30

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
appleid.cdn-apple.com (3)	3288	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1438	54275	23.43.132.13
r3.o.lencr.org (7)	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2366	6206	23.36.77.32
firefox.settings.services.mozilla.com (2)	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782	2374	35.241.9.150
content-signature-2.cdn.mozilla.net (1)	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413	5844	34.160.144.191
ocsp.digicert.com (2)	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682	1594	93.184.220.29
img-getpocket.cdn.mozilla.net (6)	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3246	56636	34.120.237.76
contile.services.mozilla.com (1)	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333	391	34.117.237.239
push.services.mozilla.com (1)	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606	127	52.39.122.167
applesacxx.top (20)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9445	230757	47.243.112.87
www.apple.com (13)	182	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6995	38723	184.24.44.212

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-16T21:18:51Z	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.
2023-01-16	medium	applesacxx.top/	Apple Inc.

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-16	medium	applesacxx.top/	Phishing
2023-01-16	medium	applesacxx.top/js/common-header.js	Phishing
2023-01-16	medium	applesacxx.top/js/site-jquery.min.js	Phishing
2023-01-16	medium	applesacxx.top/js/la/layer.js	Phishing
2023-01-16	medium	applesacxx.top/js/jquery-3.4.1.min.js	Phishing
2023-01-16	medium	applesacxx.top/ap/signin/step1/getipCout	Phishing
2023-01-16	medium	applesacxx.top/js/chunk-vendors.fe412a36.js	Phishing
2023-01-16	medium	applesacxx.top/api/api.php	Phishing
2023-01-16	medium	applesacxx.top/images/appleicons_text.ttf	Phishing
2023-01-16	medium	applesacxx.top/js/app.36fd5365.js	Phishing
2023-01-16	medium	applesacxx.top/images/appleicons_text.woff	Phishing
2023-01-16	medium	applesacxx.top/images/appleicons_text.woff	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

HTTP Transactions (56)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

0643dc6b6fed33b3537160b6bb77bcbf

aa43bd1fbb30d2219f3285c1ee4991ffb33562c5

f137438e30e0d69cba77ca2eb736687873e4a9c06cf88d23c6d55ea930fde09f

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F137438E30E0D69CBA77CA2EB736687873E4A9C06CF88D23C6D55EA930FDE09F"
Last-Modified: Sat, 14 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2275
Expires: Mon, 16 Jan 2023 21:56:46 GMT
Date: Mon, 16 Jan 2023 21:18:51 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

2258cd6b877a3aca8f4c84074e65ac4b

4e46c70941f8e497e8afc8d078644e7f81761a1c

faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7827
Expires: Mon, 16 Jan 2023 23:29:18 GMT
Date: Mon, 16 Jan 2023 21:18:51 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939

URL HTTP/2

firefox.settings.services.mozilla.com/v1/
IP

35.241.9.150:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with very long lines (939), with no line terminators

Size

939
Hash

ff250d3ef3fa45322bf05039a0122a9f

b3e7a2c383bce1bab807dbe1a03c375258b51f1d

d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

                                        GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 16 Jan 2023 20:42:12 GMT
content-type: application/json
age: 2199
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

f7bd85a261739c122eefb74ffddaec99

e2e059b0740592e8591d432249aafe5fcb8af23c

71bdd130b8d143f228542f678e91c98ab4e5844fb9f47b036e15372660be25fd

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71BDD130B8D143F228542F678E91C98AB4E5844FB9F47B036E15372660BE25FD"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3767
Expires: Mon, 16 Jan 2023 22:21:38 GMT
Date: Mon, 16 Jan 2023 21:18:51 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5348

URL HTTP/2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP

34.160.144.191:0
ASN

#15169 GOOGLE

Magic

PEM certificate\012- , ASCII text

Size

5348
Hash

7b922915ebf1fa3639b333f994c74f24

144a3f80b98fd0652d4614f24cf6cbbee40f8938

adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

                                        GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
x-amz-id-2: u/wWRDfa0+GGHOOLmnDikpNdMChCxR08IWT38y4piUD5xFJ6a09niKIcnqD1LezGEu8tmBU/B9s=
x-amz-request-id: Z729Y51MWWY6V03N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 16 Jan 2023 20:44:43 GMT
age: 2048
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

URL HTTP/2

contile.services.mozilla.com/v1/tiles
IP

34.117.237.239:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with no line terminators

Size

12
Hash

23e88fb7b99543fb33315b29b1fad9d6

a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

                                        GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 21:18:51 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329

URL HTTP/2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP

35.241.9.150:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with very long lines (329), with no line terminators

Size

329
Hash

0333b0655111aa68de771adfcc4db243

63f295a144ac87a7c8e23417626724eeca68a7eb

60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

                                        GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 16 Jan 2023 20:33:46 GMT
age: 2706
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471

URL HTTP/1.1

ocsp.digicert.com/
IP

93.184.220.29:0
ASN

#15133 EDGECAST

Magic

data

Size

471
Hash

d03545e1fc5a8876441094039811aac5

99fcc840f3516298625c528e9b408132f7fcbb9c

166fa7c7bb716b2cd02a47884ee00df31030dfb4b2a6fdae7b59b19f87739123

HTTP Headers

                                        POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3252
Cache-Control: max-age=132133
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 21:18:52 GMT
Etag: "63c513ad-1d7"
Expires: Wed, 18 Jan 2023 10:01:05 GMT
Last-Modified: Mon, 16 Jan 2023 09:06:53 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.39.122.167

101 Switching Protocols

URL HTTP/1.1

push.services.mozilla.com/
IP

52.39.122.167:0
ASN

#16509 AMAZON-02

Magic

Size

0
Hash

d41d8cd98f00b204e9800998ecf8427e

da39a3ee5e6b4b0d3255bfef95601890afd80709

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

                                        GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zzKaoRwrTHLeaTzkOeDuvA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                        HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oBTXVPKZQh+hMNbvo2rhdtX9t/E=

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

be7f25f0e6ecfc7dad6fe2312463e59c

275eaaf1ab89298e9cba8552846e53857571a330

bf5473e7d87a5b876100717e61f53772ad0cc2cfae4cd754fa76208111c102c7

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF5473E7D87A5B876100717E61F53772AD0CC2CFAE4CD754FA76208111C102C7"
Last-Modified: Sun, 15 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21579
Expires: Tue, 17 Jan 2023 03:18:32 GMT
Date: Mon, 16 Jan 2023 21:18:53 GMT
Connection: keep-alive

applesacxx.top/

Hong Kong Alibaba US Technology Co., Ltd.

47.243.112.87

200 OK

1796

URL HTTP/2

applesacxx.top/
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1904)

Size

1796
Hash

d74a93fd7a57c59617e2cb6427d03efd

c783871d54f39483bba98ec0d5e7676391185321

e0dc396bbe7f53097a168f8f298d442dcbd89e70c04401f7aa2651b5abbbacfa

Detections

Analyzer	Verdict	Alert
openphish	Apple Inc.
fortinet	Phishing

HTTP Headers

                                        GET / HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                        HTTP/2 200 OK
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With
access-control-allow-origin: *
set-cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93; path=/
vary: Accept-Encoding
content-encoding: gzip
content-length: 1796
content-type: text/html; charset=utf-8
date: Mon, 16 Jan 2023 21:18:53 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471

URL HTTP/1.1

ocsp.digicert.com/
IP

93.184.220.29:0
ASN

#15133 EDGECAST

Magic

data

Size

471
Hash

c6c8849d4c130bc6cfcba77b3afd1349

245768af1140e1992c8c66ff13de0b782e15a71b

538522a6e569aa2e3a3b41ff1379bf8d2c0fb738dc3c2bccdd1826945cbff123

HTTP Headers

                                        POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5782
Cache-Control: max-age=162053
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 21:18:53 GMT
Etag: "63c57ead-1d7"
Expires: Wed, 18 Jan 2023 18:19:46 GMT
Last-Modified: Mon, 16 Jan 2023 16:43:25 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

www.apple.com/ac/globalnav/7/en_US/styles/ac-globalnav.built.css

184.24.44.212

200 OK

12667

URL HTTP/2

www.apple.com/ac/globalnav/7/en_US/styles/ac-globalnav.built.css
IP

184.24.44.212:0
ASN

#16625 AKAMAI-AS

Magic

ASCII text, with very long lines (65536), with no line terminators

Size

12667
Hash

2540a75e40969b8f6c816c66be1bf0ac

84c10e8286615566670e1380a80b05249d263fa3

9b303602d0eab00aa53cf537a04b93fecb5f6a60397b93dd69d4c0cfc6e2ef53

HTTP Headers

                                        GET /ac/globalnav/7/en_US/styles/ac-globalnav.built.css HTTP/1.1
Host: www.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: Apple
content-type: text/css
set-cookie: geo=NO; path=/; domain=.apple.com
content-security-policy: default-src 'self' blob: data: *.akamaized.net *.apple.com *.apple-mapkit.com *.cdn-apple.com *.organicfruitapps.com; child-src blob: embed.music.apple.com embed.podcasts.apple.com swdlp.apple.com www.apple.com www.instagram.com platform.twitter.com www.youtube-nocookie.com; img-src 'unsafe-inline' blob: data: *.apple.com *.apple-mapkit.com *.cdn-apple.com *.mzstatic.com; script-src 'unsafe-inline' 'unsafe-eval' blob: *.apple.com *.apple-mapkit.com www.instagram.com platform.twitter.com; style-src 'unsafe-inline' *.apple.com
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000; includeSubdomains
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=148
expires: Mon, 16 Jan 2023 21:21:21 GMT
date: Mon, 16 Jan 2023 21:18:53 GMT
content-length: 12667
x-cache: TCP_HIT from a95-101-11-143.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
X-Firefox-Spdy: h2

appleid.cdn-apple.com/appleauth/static/cssj/602923700/widget/auth/app-sk7.css

23.43.132.13

200 OK

42200

URL HTTP/1.1

appleid.cdn-apple.com/appleauth/static/cssj/602923700/widget/auth/app-sk7.css
IP

23.43.132.13:0
ASN

#16625 AKAMAI-AS

Magic

Unicode text, UTF-8 text, with very long lines (64877), with no line terminators

Size

42200
Hash

a51af6461af5ecb325065201eb689d93

5fdca3bac9e1e0d40a4e163a6b626762e2dedb89

a1ccf818054e837fdd93565aa2f7ab6e2b26309cccab21981d96cbdd71f10c38

HTTP Headers

                                        GET /appleauth/static/cssj/602923700/widget/auth/app-sk7.css HTTP/1.1
Host: appleid.cdn-apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/1.1 200 OK
Server: Apple
Content-Type: text/css
Cache-Control: public, max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Accept-Ranges: bytes
ETag: W/"432959-1663616268896"
Last-Modified: Mon, 19 Sep 2022 19:37:48 GMT
Vary: accept-encoding
Content-Encoding: gzip
Content-Length: 42200
Date: Mon, 16 Jan 2023 21:18:53 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *

applesacxx.top/css/ac-globalnav.built.css

47.243.112.87

200 OK

13889

URL HTTP/2

applesacxx.top/css/ac-globalnav.built.css
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

ASCII text, with very long lines (712), with CRLF line terminators

Size

13889
Hash

b3a12b6efa30ae6f778ea4def1ae3e8b

cb86e6509321825ff87d0258313b62990ac1c5bb

eb8edeb05a57f6cd3f2681fd73be6818ab720bae82ef16201d1e3f71bbf5e374

Detections

Analyzer	Verdict	Alert
openphish	Apple Inc.

HTTP Headers

                                        GET /css/ac-globalnav.built.css HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:19:16 GMT
etag: "22299-5f210f6b4dd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13889
content-type: text/css
date: Mon, 16 Jan 2023 21:18:53 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

6b6a65d2536cc8f99e68793ae265b595

f65e75f8419bd83e26f49def7fa2604db5f77b4d

94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15044
Expires: Tue, 17 Jan 2023 01:29:38 GMT
Date: Mon, 16 Jan 2023 21:18:54 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

6b6a65d2536cc8f99e68793ae265b595

f65e75f8419bd83e26f49def7fa2604db5f77b4d

94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15044
Expires: Tue, 17 Jan 2023 01:29:38 GMT
Date: Mon, 16 Jan 2023 21:18:54 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

6b6a65d2536cc8f99e68793ae265b595

f65e75f8419bd83e26f49def7fa2604db5f77b4d

94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15044
Expires: Tue, 17 Jan 2023 01:29:38 GMT
Date: Mon, 16 Jan 2023 21:18:54 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2fb3ba8-a85e-42ba-b607-87ced36844b2.jpeg

34.120.237.76

200 OK

5766

URL HTTP/2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2fb3ba8-a85e-42ba-b607-87ced36844b2.jpeg
IP

34.120.237.76:0
ASN

#15169 GOOGLE

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

Size

5766
Hash

542f87ebb35e170451b610e4b700bcb1

2259cdebacc4c9f07aad838eec494863d4273ad1

85001f2cf33f3fc98d4cdcc7aef38611e34aea3a791d8acb0a5946c4619398eb

HTTP Headers

                                        GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2fb3ba8-a85e-42ba-b607-87ced36844b2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
content-length: 5766
x-amzn-requestid: b6a8d7ee-ff35-4720-8d2e-ba2b8db6edfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbP4GDQIAMFTSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c47265-6022a62f69d8f938458d18a0;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YcIDYSEtEIIfGauNxD9V1tuSCAPDq9OaaAATRTOC3Sjlb-72IA0ScQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 22:02:24 GMT
age: 83790
etag: "2259cdebacc4c9f07aad838eec494863d4273ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9801

URL HTTP/2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3456fd70-5207-41e6-abed-adbc381fd7a4.jpeg
IP

34.120.237.76:0
ASN

#15169 GOOGLE

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

Size

9801
Hash

74ac30be02dee9dcfeee79a7dc54edff

1368d81de22ea2e4054a3e1a8f01ef337c63e35b

8abc2f276906dfb9ce75c2526d2c2cfa6aea6dbe13f4046de1040cd611cbbc1f

HTTP Headers

                                        GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3456fd70-5207-41e6-abed-adbc381fd7a4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
content-length: 9801
x-amzn-requestid: 39d84a20-55f7-4b7c-abc4-9ac1ff100da9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eqSkoGCZoAMF1zA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0caea-4f7a1cf676335cc83018dc51;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 03:07:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUFicgD94yxyZhMtQm-aYS-QpZXn07rLRBhnBLMTIQh6qHKOX_LRFg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 04:24:02 GMT
age: 60892
etag: "1368d81de22ea2e4054a3e1a8f01ef337c63e35b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9176

URL HTTP/2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdba5086-6c46-4cc7-9087-e85f89cbe947.jpeg
IP

34.120.237.76:0
ASN

#15169 GOOGLE

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

Size

9176
Hash

ad1a79b09348c4959a8ac05513efcb78

10c0a66add63c868ff332022f588e65f4ac1ec15

8a123746389e6b480669b8d6882f7edce290f1c226cd6744e23bac94b8de6d32

HTTP Headers

                                        GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdba5086-6c46-4cc7-9087-e85f89cbe947.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
content-length: 9176
x-amzn-requestid: 1d5746ff-7de6-4a54-87d2-d15330d1bb58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etlL8HiPoAMFrIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c21be5-044d012445cf23c01cb07a89;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 03:05:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rlWcTZTEG0kynoJM9bd9eba8kiPvodkF7ewyDV7JaR9qPjiNMApa1g==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 00:20:11 GMT
age: 75523
etag: "10c0a66add63c868ff332022f588e65f4ac1ec15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7986

URL HTTP/2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa81e129b-3fb3-4b30-a6fc-04ac1926b5c8.jpeg
IP

34.120.237.76:0
ASN

#15169 GOOGLE

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

Size

7986
Hash

0c1d929710bbf5d3a500cff064fa28e5

f76fade4eba5e5740d1261a2bce7776719ee477f

bb0b45ede28406534c236881abe011a1b8162a1bcb4cbe61320c613fec5d0010

HTTP Headers

                                        GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa81e129b-3fb3-4b30-a6fc-04ac1926b5c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
content-length: 7986
x-amzn-requestid: 366be46e-97f4-4bdc-8341-5bf87438ad86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbPvEezoAMF6ng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c47264-7eef208b3ec703b82d792537;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qfBDjRpkhNx6ijJvTvPJFwvyjzTPnsPFHYFBK6wYwrUk1dwyCo2UCw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 22:03:31 GMT
age: 83723
etag: "f76fade4eba5e5740d1261a2bce7776719ee477f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11285

URL HTTP/2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d821e79-af3a-4b67-a79e-90cdf9701001.jpeg
IP

34.120.237.76:0
ASN

#15169 GOOGLE

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

Size

11285
Hash

91a664271b9042ab5a34c1259df6ab93

7ce177939ceed31dbe137996cace3f71eaab3cf4

08b872b4c8dc8d4b5e26d7c5e7985c144dcf45623737e6daf7813b2add8ab013

HTTP Headers

                                        GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d821e79-af3a-4b67-a79e-90cdf9701001.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
content-length: 11285
x-amzn-requestid: 46c0b124-5916-4067-99af-2fa9812dfb2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ev-1zHc4oAMFV6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c311be-3ffbee9348f4351459ed0099;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 20:34:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xvBnmF39Og8Zbf9xZ0IjC0Kd5cIYRc4ONYqolYdxxmzS8i-K2REYSA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 04:56:54 GMT
age: 58920
etag: "7ce177939ceed31dbe137996cace3f71eaab3cf4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6273

URL HTTP/2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd986c41-5e27-40cc-8622-aeddbd283d0c.jpeg
IP

34.120.237.76:0
ASN

#15169 GOOGLE

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

Size

6273
Hash

a7917592de9f2ddbe7d3a7fa7f3d4d62

866b04ce93a30369d7cb0a6d2155a8b10292507f

da58e1798bf0fcbfe771420a66bbf671cc84e0ca429e076fdc70bb8d73cddb18

HTTP Headers

                                        GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd986c41-5e27-40cc-8622-aeddbd283d0c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
content-length: 6273
x-amzn-requestid: f5d21802-91ea-44cc-aeb2-8ec9af07e1a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbOyFwNIAMFZsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4725e-3028350e72b2ee7b6ae44f2c;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8ggqVFvybykQ-MJzU9H_L6JS9YqmLGsuaMJ34Qy7o6yoMOJOmvYsMA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 21:53:09 GMT
age: 84345
etag: "866b04ce93a30369d7cb0a6d2155a8b10292507f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

applesacxx.top/js/common-header.js

47.243.112.87

200 OK

3595

URL HTTP/2

applesacxx.top/js/common-header.js
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

ASCII text, with CRLF line terminators

Size

3595
Hash

b083198252059000d6c9702cfe3f2f90

10d2b030f553895698674bd0b9a2d5f71e7e6ba9

b7a4ceff118ac256bf581f22553ee2f0322aeab5eed536c822d7187843aa1cd2

Detections

Analyzer	Verdict	Alert
openphish	Apple Inc.
fortinet	Phishing

HTTP Headers

                                        GET /js/common-header.js HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:19:16 GMT
etag: "3344-5f210f6b4dd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3595
content-type: application/javascript
date: Mon, 16 Jan 2023 21:18:53 GMT
server: Apache
X-Firefox-Spdy: h2

applesacxx.top/css/ac-globalfooter.built.css

47.243.112.87

200 OK

6023

URL HTTP/2

applesacxx.top/css/ac-globalfooter.built.css
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

Unicode text, UTF-8 text, with very long lines (45087), with no line terminators

Size

6023
Hash

5ace15a77d93f0595fbbda888b1cd8a1

056690120db892c05ec37f00eda1a9ff94b119eb

9adba0d6467d118fc029efb1dd36e684a7c3850f1fea8723dc76b0e98131dec8

Detections

Analyzer	Verdict	Alert
openphish	Apple Inc.

HTTP Headers

                                        GET /css/ac-globalfooter.built.css HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:19:16 GMT
etag: "b0d8-5f210f6b4dd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6023
content-type: text/css
date: Mon, 16 Jan 2023 21:18:53 GMT
server: Apache
X-Firefox-Spdy: h2

applesacxx.top/js/site-jquery.min.js

47.243.112.87

200 OK

32817

URL HTTP/2

applesacxx.top/js/site-jquery.min.js
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

ASCII text, with very long lines (32056), with CRLF line terminators

Size

32817
Hash

5ec480205a2fbed2d54188cb5dd09873

3771c18ca7e2d84ae308a79ba587c4f1517d31bc

5172090b09d581591d763879e887441d3a795f0902c14ec82cb118635dc3d24a

Detections

Analyzer	Verdict	Alert
openphish	Apple Inc.
fortinet	Phishing

HTTP Headers

                                        GET /js/site-jquery.min.js HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:19:16 GMT
etag: "16b60-5f210f6b4dd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 32817
content-type: application/javascript
date: Mon, 16 Jan 2023 21:18:53 GMT
server: Apache
X-Firefox-Spdy: h2

applesacxx.top/css/228-3f644e07cb9c5c2e5340.css

47.243.112.87

200 OK

4954

URL HTTP/2

applesacxx.top/css/228-3f644e07cb9c5c2e5340.css
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

Unicode text, UTF-8 text, with very long lines (64278), with no line terminators

Size

4954
Hash

ee9694181ab831106d83e7109acce923

8863b86f2a00be72296b5f56b457f01587240f6f

3bbbeed6839e249375f012c2008df94c842fb777c79ffe253a55e0c31b95b206

Detections

Analyzer	Verdict	Alert
openphish	Apple Inc.

HTTP Headers

                                        GET /css/228-3f644e07cb9c5c2e5340.css HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:19:16 GMT
etag: "15c8f-5f210f6b4dd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4954
content-type: text/css
date: Mon, 16 Jan 2023 21:18:53 GMT
server: Apache
X-Firefox-Spdy: h2

applesacxx.top/js/la/layer.js

47.243.112.87

200 OK

7868

URL HTTP/2

applesacxx.top/js/la/layer.js
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

Unicode text, UTF-8 text, with very long lines (22680)

Size

7868
Hash

8677e7ab8522c8e019e3b5ed67d11a53

c57e0febe27275c6e32ae64a07664b690876b74d

fb4b4a42cf11f6dcb2ddb90e9d0c299881bf9dd4c2fcd0c46d97c517edcee16a

Detections

Analyzer	Verdict	Alert
openphish	Apple Inc.
fortinet	Phishing

HTTP Headers

                                        GET /js/la/layer.js HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:19:16 GMT
etag: "58d2-5f210f6b4dd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7868
content-type: application/javascript
date: Mon, 16 Jan 2023 21:18:53 GMT
server: Apache
X-Firefox-Spdy: h2

applesacxx.top/fonts?families=SF+Pro,v3|SF+Pro+Icons,v3|SF+Pro+JP,v1

47.243.112.87

404 Not Found

1829

URL HTTP/2

applesacxx.top/fonts?families=SF+Pro,v3|SF+Pro+Icons,v3|SF+Pro+JP,v1
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text

Size

1829
Hash

321f9542c6ea17ba30fbc8e6e3d440d7

1ea37383d46323212f5418635664e80de5d42fb1

d30d0f9ce035c90119d4e51f7a81cff12e69f54389f1820fb439ecb0d72f5234

HTTP Headers

                                        GET /fonts?families=SF+Pro,v3|SF+Pro+Icons,v3|SF+Pro+JP,v1 HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 404 Not Found
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With
access-control-allow-origin: *
set-cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93; path=/
vary: Accept-Encoding
content-encoding: gzip
content-length: 1829
content-type: text/html; charset=utf-8
date: Mon, 16 Jan 2023 21:18:53 GMT
server: Apache
X-Firefox-Spdy: h2

applesacxx.top/js/jquery-3.4.1.min.js

47.243.112.87

200 OK

30682

URL HTTP/2

applesacxx.top/js/jquery-3.4.1.min.js
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

ASCII text, with very long lines (65450), with CRLF line terminators

Size

30682
Hash

547d27868177c09f5c2a3b7e4de5bbb6

3b4fbbbf12a2d6ba639a3d3e89995ce8a1edacb3

68ce47797903189d79c5fdf24e58a24993afa852e03022a893aa0bc1a06ea719

Detections

Analyzer	Verdict	Alert
openphish	Apple Inc.
fortinet	Phishing

HTTP Headers

                                        GET /js/jquery-3.4.1.min.js HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:19:16 GMT
etag: "15853-5f210f6b4dd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 30682
content-type: application/javascript
date: Mon, 16 Jan 2023 21:18:53 GMT
server: Apache
X-Firefox-Spdy: h2

applesacxx.top/css/app.83cb19e1.css

47.243.112.87

200 OK

38178

URL HTTP/2

applesacxx.top/css/app.83cb19e1.css
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

Unicode text, UTF-8 text, with very long lines (64652), with no line terminators

Size

38178
Hash

e13259cb4302246d3e5f1c854e7402a0

ab13fa6347af14d0421dfa42088c1e71914b3d6d

05cff46ce1ca93142320a7c54b8e095b2263ff1e8d941ebbfdeae73784a8441a

Detections

Analyzer	Verdict	Alert
openphish	Apple Inc.

HTTP Headers

                                        GET /css/app.83cb19e1.css HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:19:16 GMT
etag: "76a9c-5f210f6b4dd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 38178
content-type: text/css
date: Mon, 16 Jan 2023 21:18:54 GMT
server: Apache
X-Firefox-Spdy: h2

applesacxx.top/js/la/theme/default/layer.css?v=3.5.1

47.243.112.87

200 OK

2789

URL HTTP/2

applesacxx.top/js/la/theme/default/layer.css?v=3.5.1
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

ASCII text, with very long lines (14271), with no line terminators

Size

2789
Hash

6497813545cf90650ae10de86c63d726

c85b41a63fb9c30662fd8562e1b5e904861efd32

b10eff28060fadecc17553df8fc74874fa5aa42d95c2c1942f0b4297e59bea01

HTTP Headers

                                        GET /js/la/theme/default/layer.css?v=3.5.1 HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:19:18 GMT
etag: "37bf-5f210f6d36180-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2789
content-type: text/css
date: Mon, 16 Jan 2023 21:18:55 GMT
server: Apache
X-Firefox-Spdy: h2

applesacxx.top/favicon.ico

47.243.112.87

200 OK

1548

URL HTTP/2

applesacxx.top/favicon.ico
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data

Size

1548
Hash

b23ab51cc242bd99af6c169bbe9de0aa

15e915c1fe631f343f71d1914ca30db548f7893f

d78af36a66915cf73d54f69e4ca3785d9c3241e550d67bd1d77069a704f12427

Detections

Analyzer	Verdict	Alert
openphish	Apple Inc.

HTTP Headers

                                        GET /favicon.ico HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:19:16 GMT
etag: "576e-5f210f6b4dd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1548
content-type: image/x-icon
date: Mon, 16 Jan 2023 21:18:57 GMT
server: Apache
X-Firefox-Spdy: h2

applesacxx.top/ap/signin/step1/getipCout

47.243.112.87

200 OK

URL HTTP/2

applesacxx.top/ap/signin/step1/getipCout
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

JSON data\012- , ASCII text, with no line terminators

Size

45
Hash

b8a90c39629ef77d044fcfc5d7bea337

9c6f63e648a06125b353c3de4489a65c57ecada9

5e12ca8f569d0a08929ee91f3c0a6575199116bf85eecf8cb1db3cb068acae62

Detections

Analyzer	Verdict	Alert
openphish	Apple Inc.
fortinet	Phishing

HTTP Headers

                                        POST /ap/signin/step1/getipCout HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 6
Origin: https://applesacxx.top
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With
access-control-allow-origin: https://applesacxx.top
set-cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93; path=/
vary: Accept-Encoding
content-encoding: gzip
content-length: 45
content-type: application/json; charset=utf-8
date: Mon, 16 Jan 2023 21:18:58 GMT
server: Apache
X-Firefox-Spdy: h2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_apple_image__b5er5ngrzxqq_large.svg

184.24.44.212

200 OK

506

URL HTTP/2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_apple_image__b5er5ngrzxqq_large.svg
IP

184.24.44.212:0
ASN

#16625 AKAMAI-AS

Magic

SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (863), with no line terminators

Size

506
Hash

7c6393caa9f0ae330e47551b60036d2d

4d52261dfc38b7fb8d2034f20919f2763774c029

48952a3f26c6ae478ee3514125aefc94b40eecca7bddccdb805922974540aa1f

HTTP Headers

                                        GET /ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_apple_image__b5er5ngrzxqq_large.svg HTTP/1.1
Host: www.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apple.com/ac/globalnav/7/en_US/styles/ac-globalnav.built.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Sun, 24 Oct 2021 03:40:19 GMT
server: Apple
accept-ranges: bytes
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self' blob: data: *.akamaized.net *.apple.com *.apple-mapkit.com *.cdn-apple.com *.organicfruitapps.com; child-src blob: embed.music.apple.com embed.podcasts.apple.com swdlp.apple.com www.apple.com www.instagram.com platform.twitter.com www.youtube-nocookie.com; img-src 'unsafe-inline' blob: data: *.apple.com *.apple-mapkit.com *.cdn-apple.com *.mzstatic.com; script-src 'unsafe-inline' 'unsafe-eval' blob: *.apple.com *.apple-mapkit.com www.instagram.com platform.twitter.com; style-src 'unsafe-inline' *.apple.com
content-type: image/svg+xml
content-encoding: gzip
content-length: 506
cache-control: max-age=154
expires: Mon, 16 Jan 2023 21:21:33 GMT
date: Mon, 16 Jan 2023 21:18:59 GMT
x-cache: TCP_REFRESH_HIT from a95-101-11-143.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (S)
vary: Accept-Encoding
x-cache-remote: TCP_IMS_HIT from a95-101-11-150.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
set-cookie: geo=NO; path=/; domain=.apple.com
X-Firefox-Spdy: h2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_store_image__c7jy08initqq_large.svg

184.24.44.212

200 OK

962

URL HTTP/2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_store_image__c7jy08initqq_large.svg
IP

184.24.44.212:0
ASN

#16625 AKAMAI-AS

Magic

SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2420)

Size

962
Hash

0f16108c3fb34b73cfadbef5be143b2b

48aa366845387de2db1a19380d20ce6c115942cc

e87b18c511711ba7a2ea18b6d59e99157bd434b8736814174dac7bb289112140

HTTP Headers

                                        GET /ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_store_image__c7jy08initqq_large.svg HTTP/1.1
Host: www.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apple.com/ac/globalnav/7/en_US/styles/ac-globalnav.built.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 14 Oct 2021 23:19:28 GMT
server: Apple
accept-ranges: bytes
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' blob: data: *.akamaized.net *.apple.com *.apple-mapkit.com *.cdn-apple.com *.organicfruitapps.com; child-src blob: embed.music.apple.com embed.podcasts.apple.com swdlp.apple.com www.apple.com www.instagram.com platform.twitter.com www.youtube-nocookie.com; img-src 'unsafe-inline' blob: data: *.apple.com *.apple-mapkit.com *.cdn-apple.com *.mzstatic.com; script-src 'unsafe-inline' 'unsafe-eval' blob: *.apple.com *.apple-mapkit.com www.instagram.com platform.twitter.com; style-src 'unsafe-inline' *.apple.com
content-type: image/svg+xml
content-encoding: gzip
content-length: 962
cache-control: max-age=80
expires: Mon, 16 Jan 2023 21:20:19 GMT
date: Mon, 16 Jan 2023 21:18:59 GMT
x-cache: TCP_REFRESH_HIT from a95-101-11-143.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (S)
vary: Accept-Encoding
x-cache-remote: TCP_IMS_HIT from a95-101-11-150.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
set-cookie: geo=NO; path=/; domain=.apple.com
X-Firefox-Spdy: h2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_mac_image__dazlko3t9a6a_large.svg

184.24.44.212

200 OK

598

URL HTTP/2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_mac_image__dazlko3t9a6a_large.svg
IP

184.24.44.212:0
ASN

#16625 AKAMAI-AS

Magic

SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1105), with no line terminators

Size

598
Hash

a9c6830bebe54b8b8b1d6c09ffb507f7

505c03add10939828c6144829156f2b1d08e8754

df07b4d85a33c691804b8c390671a92169e77dc8a5d3866e3fe89d2225bcfec4

HTTP Headers

                                        GET /ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_mac_image__dazlko3t9a6a_large.svg HTTP/1.1
Host: www.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apple.com/ac/globalnav/7/en_US/styles/ac-globalnav.built.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 14 Oct 2021 23:19:28 GMT
server: Apple
accept-ranges: bytes
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self' blob: data: *.akamaized.net *.apple.com *.apple-mapkit.com *.cdn-apple.com *.organicfruitapps.com; child-src blob: embed.music.apple.com embed.podcasts.apple.com swdlp.apple.com www.apple.com www.instagram.com platform.twitter.com www.youtube-nocookie.com; img-src 'unsafe-inline' blob: data: *.apple.com *.apple-mapkit.com *.cdn-apple.com *.mzstatic.com; script-src 'unsafe-inline' 'unsafe-eval' blob: *.apple.com *.apple-mapkit.com www.instagram.com platform.twitter.com; style-src 'unsafe-inline' *.apple.com
cneonction: close
nncoection: close
content-type: image/svg+xml
content-encoding: gzip
content-length: 598
cache-control: max-age=201
expires: Mon, 16 Jan 2023 21:22:20 GMT
date: Mon, 16 Jan 2023 21:18:59 GMT
x-cache: TCP_REFRESH_HIT from a95-101-11-143.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (S)
vary: Accept-Encoding
x-cache-remote: TCP_IMS_HIT from a95-101-11-150.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
set-cookie: geo=NO; path=/; domain=.apple.com
X-Firefox-Spdy: h2

applesacxx.top/js/chunk-vendors.fe412a36.js

47.243.112.87

200 OK

75347

URL HTTP/2

applesacxx.top/js/chunk-vendors.fe412a36.js
IP

47.243.112.87:0
ASN

#45102 Alibaba US Technology Co., Ltd.

Magic

Unicode text, UTF-8 text, with very long lines (65535), with no line terminators

Size

75347
Hash

290c2167c28ee5a03fa90156dc8f97a4

51bec18683aa6e125f2ad879bd38ba6f7280a4f0

f40032c90a315d31779e06c5a6868789e894a5d904cb14410d8cf696ab59c150

Detections

Analyzer	Verdict	Alert
openphish	Apple Inc.
fortinet	Phishing

HTTP Headers

                                        GET /js/chunk-vendors.fe412a36.js HTTP/1.1
Host: applesacxx.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://applesacxx.top/
Cookie: PHPSESSID=f2d3e2014a7d26a7ee1ee569022aef93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 12 Jan 2023 13:19:16 GMT
etag: "32272-5f210f6b4dd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 16 Jan 2023 21:18:54 GMT
server: Apache
X-Firefox-Spdy: h2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_ipad_image__fw9qyj9lloi2_large.svg

184.24.44.212

200 OK

634

URL HTTP/2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_ipad_image__fw9qyj9lloi2_large.svg
IP

184.24.44.212:0
ASN

#16625 AKAMAI-AS

Magic

SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1164), with no line terminators

Size

634
Hash

422c1654daadd76d616c3ebe7400c652

b20c8cd51f5ebf946b57a4515b58f449712dee0b

385c1ec51ab7b5b645224c0a645914cc554b65c04c8b67c6e4d9cff4a9d4b1f7

HTTP Headers

                                        GET /ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_ipad_image__fw9qyj9lloi2_large.svg HTTP/1.1
Host: www.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apple.com/ac/globalnav/7/en_US/styles/ac-globalnav.built.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 14 Oct 2021 23:19:28 GMT
server: Apple
accept-ranges: bytes
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self' blob: data: *.akamaized.net *.apple.com *.apple-mapkit.com *.cdn-apple.com *.organicfruitapps.com; child-src blob: embed.music.apple.com embed.podcasts.apple.com swdlp.apple.com www.apple.com www.instagram.com platform.twitter.com www.youtube-nocookie.com; img-src 'unsafe-inline' blob: data: *.apple.com *.apple-mapkit.com *.cdn-apple.com *.mzstatic.com; script-src 'unsafe-inline' 'unsafe-eval' blob: *.apple.com *.apple-mapkit.com www.instagram.com platform.twitter.com; style-src 'unsafe-inline' *.apple.com
cneonction: close
content-type: image/svg+xml
content-encoding: gzip
content-length: 634
cache-control: max-age=124
expires: Mon, 16 Jan 2023 21:21:03 GMT
date: Mon, 16 Jan 2023 21:18:59 GMT
x-cache: TCP_REFRESH_HIT from a95-101-11-143.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (S)
vary: Accept-Encoding
x-cache-remote: TCP_IMS_HIT from a95-101-11-175.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
set-cookie: geo=NO; path=/; domain=.apple.com
X-Firefox-Spdy: h2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_watch_image__gkoblojrlsqe_large.svg

184.24.44.212

200 OK

683

URL HTTP/2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_watch_image__gkoblojrlsqe_large.svg
IP

184.24.44.212:0
ASN

#16625 AKAMAI-AS

Magic

SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1309), with no line terminators

Size

683
Hash

9655609bfd5cb54cdbc923f75aea2603

f1ba0f202e5aafeb2a2cf3536b650c184322de36

6ab90f93a1a92a4f6e4a2700ff97ef2622cb80c01618d3d9dde2ba131619ca52

HTTP Headers

                                        GET /ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_watch_image__gkoblojrlsqe_large.svg HTTP/1.1
Host: www.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apple.com/ac/globalnav/7/en_US/styles/ac-globalnav.built.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 14 Oct 2021 23:19:28 GMT
server: Apple
accept-ranges: bytes
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self' blob: data: *.akamaized.net *.apple.com *.apple-mapkit.com *.cdn-apple.com *.organicfruitapps.com; child-src blob: embed.music.apple.com embed.podcasts.apple.com swdlp.apple.com www.apple.com www.instagram.com platform.twitter.com www.youtube-nocookie.com; img-src 'unsafe-inline' blob: data: *.apple.com *.apple-mapkit.com *.cdn-apple.com *.mzstatic.com; script-src 'unsafe-inline' 'unsafe-eval' blob: *.apple.com *.apple-mapkit.com www.instagram.com platform.twitter.com; style-src 'unsafe-inline' *.apple.com
content-type: image/svg+xml
content-encoding: gzip
content-length: 683
cache-control: max-age=208
expires: Mon, 16 Jan 2023 21:22:27 GMT
date: Mon, 16 Jan 2023 21:18:59 GMT
x-cache: TCP_REFRESH_HIT from a95-101-11-143.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (S)
vary: Accept-Encoding
x-cache-remote: TCP_IMS_HIT from a95-101-11-175.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
set-cookie: geo=NO; path=/; domain=.apple.com
X-Firefox-Spdy: h2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_airpods_image__f969s84ivmaa_large.svg

184.24.44.212

200 OK

854

URL HTTP/2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_airpods_image__f969s84ivmaa_large.svg
IP

184.24.44.212:0
ASN

#16625 AKAMAI-AS

Magic

SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1722), with no line terminators

Size

854
Hash

ccafac1d17b3463e9b1791fafb74d823

303c530474238638b653c90e357f926b0cfeb97a

2d39e19a8a4adbee7603871c6555353d0b5d027431847416b36c75b172578bc6

HTTP Headers

                                        GET /ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_airpods_image__f969s84ivmaa_large.svg HTTP/1.1
Host: www.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apple.com/ac/globalnav/7/en_US/styles/ac-globalnav.built.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 14 Oct 2021 23:19:28 GMT
server: Apple
accept-ranges: bytes
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self' blob: data: *.akamaized.net *.apple.com *.apple-mapkit.com *.cdn-apple.com *.organicfruitapps.com; child-src blob: embed.music.apple.com embed.podcasts.apple.com swdlp.apple.com www.apple.com www.instagram.com platform.twitter.com www.youtube-nocookie.com; img-src 'unsafe-inline' blob: data: *.apple.com *.apple-mapkit.com *.cdn-apple.com *.mzstatic.com; script-src 'unsafe-inline' 'unsafe-eval' blob: *.apple.com *.apple-mapkit.com www.instagram.com platform.twitter.com; style-src 'unsafe-inline' *.apple.com
cneonction: close
content-type: image/svg+xml
content-encoding: gzip
content-length: 854
cache-control: max-age=244
expires: Mon, 16 Jan 2023 21:23:03 GMT
date: Mon, 16 Jan 2023 21:18:59 GMT
x-cache: TCP_REFRESH_HIT from a95-101-11-143.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (S)
vary: Accept-Encoding
x-cache-remote: TCP_IMS_HIT from a95-101-11-150.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
set-cookie: geo=NO; path=/; domain=.apple.com
X-Firefox-Spdy: h2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_tvhome_image__zb2ewyxbi6ae_large.svg

184.24.44.212

200 OK

1072

URL HTTP/2

www.apple.com/ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_tvhome_image__zb2ewyxbi6ae_large.svg
IP

184.24.44.212:0
ASN

#16625 AKAMAI-AS

Magic

SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2194), with no line terminators

Size

1072
Hash

7e5c9145beda748ed091373d4d00c388

f05e136c704c40e1d42ef10e6710ca50a0027180

e60052f03009b4e45c2dd716f3b5eee1d310d1b00cc8715859a4bec19eb543b9

HTTP Headers

                                        GET /ac/globalnav/7/en_US/images/be15095f-5a20-57d0-ad14-cf4c638e223a/globalnav_links_tvhome_image__zb2ewyxbi6ae_large.svg HTTP/1.1
Host: www.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apple.com/ac/globalnav/7/en_US/styles/ac-globalnav.built.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                        HTTP/2 200 OK
last-modified: Thu, 14 Oct 2021 23:19:28 GMT
server: Apple
strict-transport-security: max-age=31536000; includeSubdomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self' blob: data: *.akamaized.net *.apple.com *.apple-mapkit.com *.cdn-apple.com *.organicfruitapps.com; child-src blob: embed.music.apple.com embed.podcasts.apple.com www.apple.com www.instagram.com platform.twitter.com www.youtube-nocookie.com; img-src 'unsafe-inline' blob: data: *.apple.com *.apple-mapkit.com *.cdn-apple.com *.mzstatic.com; script-src 'unsafe-inline' 'unsafe-eval' blob: *.apple.com *.apple-mapkit.com www.instagram.com platform.twitter.com; style-src 'unsafe-inline' *.apple.com
content-type: image/svg+xml
accept-ranges: bytes
content-encoding: gzip
content-length: 1072
cache-control: max-age=246
expires: Mon, 16 Jan 2023 21:23:05 GMT
date: Mon, 16 Jan 2023 21:18:59 GMT
x-cache: TCP_REFRESH_HIT from a95-101-11-143.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (S)
vary: Accept-Encoding
x-cache-remote: TCP_IMS_HIT from a95-101-11-175.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-)
set-cookie: geo=NO; path=/; domain=.apple.com
X-Firefox-Spdy: h2

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

#1 JS:Script (size: 13124)

#2 JS:Script (size: 93024)

#3 JS:Script (size: 0)

#4 JS:Script (size: 88147)

#5 JS:Script (size: 205426)

#6 JS:Script (size: 6899917)

HTTP Transactions (56)

URL HTTP/1.1

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

Magic

Size

Hash

HTTP Headers