{"report_id":"3681f3ac-ae7f-4e3f-8707-7ba80f72dd08","version":6,"status":"done","tags":[],"date":"2025-09-30T10:15:52Z","url":{"schema":"http","addr":"iccku.com/prelanders/mystery-box/index.html","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.99","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"final":{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/index.html","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"title":"(1) Notification participate to win the prize $$$"},"submit":{"url":{"schema":"http","addr":"iccku.com/prelanders/mystery-box/index.html","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.99","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-04T10:15:52Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"iccku.com","ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2025-09-30T10:15:52.45831Z","last_seen":"2025-09-30T10:15:52.45831Z","alert_count":38,"request_count":38,"received_data":280475,"sent_data":18615,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/main.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"7bcace2890f1e07e4012eabed8675717","sha1":"0061e651c6dd9142be61a241f676ac8791ec3704","sha256":"81d8a78f908881a4ce57c4212893f9aae9bbc287c32be298f093fe6cffd14649","sha512":"637fc9d8c14756824c48a25721bb41613de40970686006a9a4af81581c333da362a2af4ff11696c32e730692c00858fde3f16a0f2292a07e73531bf69f1869eb","ssdeep":"192:VELitkQCRrhQC7QazQhZEQ+b5un1iSiL5zDUiSL6EX4ztOIqksdOBiMCjkiEiEHQ:IrhzMGSiSid388BiiiEiiPxitim","tlshash":"cf32410525b74638816365ab9bab46167732914b3e08dd1c3b2ce3001fdd99e92fb7ec","size":11129,"data":"","first_seen":"2025-09-30T10:15:57.262367Z","last_seen":"2026-04-26T19:28:16.844996Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/generateComments.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"0913f226d94ff4d5b1820395e391f0a8","sha1":"162fdf88117453bcc8fc755ae8f3be07b06461e5","sha256":"03e5391aafeb43e5795e46dab33bc129496c59be1743a2f8a7fddb1d352445cd","sha512":"49c4ec6472ec426d44966126484bd9887b38e43c4111fea968d8a0bd4e188de1e1de0caf4b22aea5f39343517f85838cb2346a23947df4b8f0388abd9c9caa48","ssdeep":"","tlshash":"6c816c6a90b210a1267232555b3f329075a0e28b5f44b12d7f6dc28c2fdce8f61b577c","size":3844,"data":"","first_seen":"2025-09-30T10:15:57.246719Z","last_seen":"2026-04-26T19:28:16.800062Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/shared-LIYZ7WUA.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"512d40d6c260cfb4ad9b62ebd9f5c50b","sha1":"7cf2274d7732aab4ff08dbf72d5a8137fbd8af3c","sha256":"e32c6ea8ea3641ae6926ab057fb2426be3794c98d5a48bb4fa238b26ca185424","sha512":"c7a2d0b0966837c02bb0709c648fd69d73b9a0f1e6b8447fc1ababf9d616b4474b8b33aaf2292384445d867f1c9682c680f125bdbdf912e48d9349f91f8b06f2","ssdeep":"","tlshash":"7801dc990ef7118a9da320ea36875041b637a1573b4ce444377edb140f8ae1dc1eabcc","size":787,"data":"","first_seen":"2025-09-30T10:15:57.230811Z","last_seen":"2026-04-26T19:28:16.847804Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/setPrizeImg.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"4e3295af0fae9a2b08bdc27403aa7146","sha1":"98708fdb396efb0fe4966a86d8d865613b5d95b9","sha256":"34488aa2380a7b0e3eb7a0fcd4ce64e900a05f85402febf2f0d322bfd9a60825","sha512":"6b81ec43d51a96a90146cf52a4536dfcdba00cb7f85f90366c67c4760e4e11100ea691dffe6ac264fe471cf57396caac63d15fbe2878c8a897521cb717386162","ssdeep":"","tlshash":"79d0222f033a3c3218a52944ca1c018f2d418d08904289225e88c00683feefd09f28f6","size":202,"data":"","first_seen":"2025-09-30T10:15:57.234655Z","last_seen":"2025-10-03T19:33:41.835954Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/index.html","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":true,"md5":"568f552e9a0e8060b2be8a35bf71eaac","sha1":"46bf367cdc4aa54d3659c316be5ee52b61b542ec","sha256":"dc9ae9ed5cdaafdf1cb991b9ee8057a15fbe772e599f420d7b271841de21cf07","sha512":"564c01e87b9a1603586f9b03a22770c3c6122363f12935af4d79416ba5add283296a34140b1dcac7999e2799af8bf879b0396f5973adc230870343385d0606cd","ssdeep":"","tlshash":"8fe092fa032f88fa457424addf2ddec7882cb9208cb491ef10e8795c68e4660b46d598","size":410,"data":"","first_seen":"2025-09-30T10:15:57.285636Z","last_seen":"2026-04-26T19:28:16.916658Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/autoexit.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"7a7ba4a2d2f1d5167e1c6d655ffcbcfb","sha1":"d52e4454abc82076bd4ef24feb4c61d31d018382","sha256":"0318c7fbe76931f5df9f295ee558eb4a95bee0f5ca1155ced028011bf941365b","sha512":"097916e528955108837d568186e231246e85307542fb72fed1b4582550dc59ff542cf3391c03881714b9cf24f441500f0ca177139fbff7e8b14f0722b4647bf9","ssdeep":"","tlshash":"2e21497e27f7093b4b6398a9872fa16a7b242a43220ccc5c3e0d93509f0012595e2bad","size":1303,"data":"","first_seen":"2025-09-08T23:30:06.880708Z","last_seen":"2026-05-10T19:56:13.034703Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/reverse.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"13d5fe328ce322fa37adc1b64f69a2fc","sha1":"f946b6a04871af2ad8ed2cb7a34b83472c3d902d","sha256":"e61ad10c9735a6c434b536b2609954dea9925b5f9ee6803dda2d035cd2f4d994","sha512":"54bcaaaa2d0622a5ec5b60fe997ff4a567ba3eaa97bcbc39d7ac9d0e6cd742ed1edb7c936dc95510f8ac8f14270ea6d2055a8ff65d6042372504d00f93bb6e8c","ssdeep":"","tlshash":"8e218c4f42f7093b48f328948e5f7171773615832608c8997e8c9604af5ee5fc362a89","size":1306,"data":"","first_seen":"2025-09-08T23:30:06.87231Z","last_seen":"2026-05-10T19:56:13.052338Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/setDate.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"1f853c71f11aa858d2a8dfb41174ef68","sha1":"f58e15e37a321b22ee189d603cc0c750d3e148cb","sha256":"acc432b753fbfebe912afd5d39a4e1d1a2b97dd33b41bb82dc8488cb6c93d043","sha512":"6bc13ac1adaf882c26e8e8bf3baa0917e43724bbf7ea9cf4d0df83956d13023b51d107502d2752bf835825f52f583c8c6e7998b7bd16967b43c338a4e2270517","ssdeep":"","tlshash":"c9e0c21212980134d3240093d2ca8ad5fbe282f57dc5d22b6b4c444e9ce4c43d2febc8","size":296,"data":"","first_seen":"2025-09-30T10:15:57.270611Z","last_seen":"2026-04-26T19:28:16.802435Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/shared-SMYSJDQI.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"c61b9d8059f66a928bf46cadc62bd75c","sha1":"8b519789879d3bc08cc6bab999c1265db74cd45b","sha256":"8830b7f6a359f04b662a17d3eeca57914f21020d2cc67b78d9aa5061f9c3cfa4","sha512":"bb83b31211e8d2b9ce426fec929d5d85df879d9c7f35219804091f9adb15e2ae773ec6c11e00388568cace2a2cbe5f02c15fd43968996e6db7c2470b8ff706ed","ssdeep":"","tlshash":"93e0685846b7929701a322ea47c79bc1b03a68063319d889332f82000f4ee0f8aca8cc","size":377,"data":"","first_seen":"2025-09-19T19:25:59.121845Z","last_seen":"2026-05-24T20:59:09.225207Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/shared-P22NF6LM.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"08606ce09fae6ff973e73b9467ea8956","sha1":"110b39554d8a4f59e2c710bf56e33892943530ff","sha256":"b691ed2532989969f5f6eb8bd78ce76876124c18e13dae5cdf8576765fd103be","sha512":"2e96bc3c9c989030e19b9c220b65b326a77120d28ae6d8fb0ed4914c01c68a49f44a694f30987955770e4a95ad118fb3883623d9719ccebd151cf7f99ed4de1e","ssdeep":"96:xiUTPwN2kgGiQf50Mzd7EtZp5gnFP+f9t1Q5faWmL4a20ICxTRcR1:VApiQf50MVKZp5yFP+f31QxmcRCxTo","tlshash":"1be13f2c95b7928701e711ac061fa226353c991b3e88f8c87eac42542f6ec5f94f27dc","size":6949,"data":"","first_seen":"2025-09-08T23:30:06.888269Z","last_seen":"2026-05-10T19:56:13.05057Z","times_seen":31,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/shared-YENF7BNC.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"1fa0e36f829e3be6e7a97ebd59ea5271","sha1":"3341b1d62c76df3ff6819eb846aef1e2a2337ca9","sha256":"a768d4cad01e75f69740ffb4f0fcb63de89cf2c663b5360a1b2712149f6f1f01","sha512":"3aecfa8bb53aedeeee741d1ab971230b9e61d18cdd83e69df2f4d4d9a89143f11495b145fbf457b27089f0aabba04f69a470e31bee858cedac3da1e1e99433a7","ssdeep":"96:WmMI0eaH/WZCyqqZeBogQh9qiSyJC+4UpEi+3hyQxy1y8v:MdHeZtGOth9q7yJC/aEi+xyQxyMM","tlshash":"4f91bc1d07f316b781b730188b4fe86aab6a89473748ce487e9c5b501f18865d6e27c8","size":4234,"data":"","first_seen":"2025-09-08T23:30:06.897907Z","last_seen":"2026-05-10T19:56:13.041471Z","times_seen":34,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/translateElements.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"489057de2a8ea27311f88dc150f332d0","sha1":"68155d46b437fcd89db80e4ff321a22edae5c277","sha256":"695127681cfcda3ef1342382d9e8799d24a832ff4c01df5e6e77080776c48e11","sha512":"76fbdf1075832b062510ee2022d90023fe6d00a623a450771ee96c4b6a2ee935a01a85325dd7028c65e4c44ee9244c3d55eaf99f31474bbc8771ca34467b4782","ssdeep":"","tlshash":"cb41f21521f7022bc55724ab9fdb40c9fa385a031065dc193f9d8b461f84d3d67eeb94","size":2006,"data":"","first_seen":"2025-09-30T10:15:57.257128Z","last_seen":"2026-04-26T19:28:16.868858Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/autoexit.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.403Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/scripts/autoexit.js HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 6U+u2Wt2o7D5djAT+HUXLoVahdiN9xFLmvaF1xHci2UXsNHOmdPlHyuNi5bfHw5KlXEw5obNluE=\r\nx-amz-request-id: HRBQ55258AXBV9Y7\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"7a7ba4a2d2f1d5167e1c6d655ffcbcfb\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/javascript\r\nContent-Length: 1303\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1303,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"7a7ba4a2d2f1d5167e1c6d655ffcbcfb","sha1":"d52e4454abc82076bd4ef24feb4c61d31d018382","sha256":"0318c7fbe76931f5df9f295ee558eb4a95bee0f5ca1155ced028011bf941365b","sha512":"097916e528955108837d568186e231246e85307542fb72fed1b4582550dc59ff542cf3391c03881714b9cf24f441500f0ca177139fbff7e8b14f0722b4647bf9","ssdeep":"","tlshash":"2e21497e27f7093b4b6398a9872fa16a7b242a43220ccc5c3e0d93509f0012595e2bad","first_seen":"2025-09-08T23:30:06.880708Z","last_seen":"2026-05-10T19:56:13.034703Z","times_seen":31,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":6,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/shared-LIYZ7WUA.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.426Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/scripts/shared-LIYZ7WUA.js HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/assets/scripts/setDate.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 16To9pk1aWx/rP4rVyourV+mnBBhXDuFz4GQIwBfG6bxjksBBfOf0VtGS6cJo04k7fBCueewfb3JmfpeGvziNohj5ajoxKt0\r\nx-amz-request-id: HRBS04JGB4M4YDXE\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"512d40d6c260cfb4ad9b62ebd9f5c50b\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/javascript\r\nContent-Length: 787\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":787,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"512d40d6c260cfb4ad9b62ebd9f5c50b","sha1":"7cf2274d7732aab4ff08dbf72d5a8137fbd8af3c","sha256":"e32c6ea8ea3641ae6926ab057fb2426be3794c98d5a48bb4fa238b26ca185424","sha512":"c7a2d0b0966837c02bb0709c648fd69d73b9a0f1e6b8447fc1ababf9d616b4474b8b33aaf2292384445d867f1c9682c680f125bdbdf912e48d9349f91f8b06f2","ssdeep":"","tlshash":"7801dc990ef7118a9da320ea36875041b637a1573b4ce444377edb140f8ae1dc1eabcc","first_seen":"2025-09-30T10:15:57.230811Z","last_seen":"2026-04-26T19:28:16.847804Z","times_seen":4,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/man/m_1.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.451Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/man/m_1.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: xemgKTPHohLBPnMztEswVEXSibzjlSpUo9JHb2BKs4+IAlBZ+wuGi6ultSV+ssvJuaFQU1cMwJs=\r\nx-amz-request-id: 7JS8BZYBQVNVR6FZ\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"280377988f23853b69a95603dfe2d263\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 7076\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":7076,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"280377988f23853b69a95603dfe2d263","sha1":"a5e8c5f1739968304e07bcefd675e63080d4407c","sha256":"273875165b50a3fd3bf0440d30130a40c8569bd820103fc19f2434e37c8f9f08","sha512":"6bf000dc534269d4a887f3f2cf55f5dca2592f2e205f040c8d0e5607d600a731dc148e474726652890fcef0791522447c7a67841a7b3cb73db89ea8af6b4afa1","ssdeep":"192:izH3xm3PrpyDTdMqT4rGNY19wj3Qv+tEoxe:izhm3ayqcrGuSbbtBxe","tlshash":"96e1bf28810de6bdc1b2bffc5a8b0fe94a15e77cc8767032421b9a0d4d5c5568a811db","first_seen":"2025-06-29T23:05:16.426759Z","last_seen":"2026-06-03T05:29:17.647107Z","times_seen":54,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/setPrizeImg.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.403Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/scripts/setPrizeImg.js HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: bUmBuAaq2kFLZq10u1dP+KDdOIYX8ArHK578rgUBLwCjmuJJe+JlHgIqDBwL6RCUI4OFN31mL4RwCp81WFG3vEFmqehkE/Fh\r\nx-amz-request-id: HRBMVD8Q5S1T7KQR\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"4e3295af0fae9a2b08bdc27403aa7146\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/javascript\r\nContent-Length: 202\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":202,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"4e3295af0fae9a2b08bdc27403aa7146","sha1":"98708fdb396efb0fe4966a86d8d865613b5d95b9","sha256":"34488aa2380a7b0e3eb7a0fcd4ce64e900a05f85402febf2f0d322bfd9a60825","sha512":"6b81ec43d51a96a90146cf52a4536dfcdba00cb7f85f90366c67c4760e4e11100ea691dffe6ac264fe471cf57396caac63d15fbe2878c8a897521cb717386162","ssdeep":"","tlshash":"79d0222f033a3c3218a52944ca1c018f2d418d08904289225e88c00683feefd09f28f6","first_seen":"2025-09-30T10:15:57.234655Z","last_seen":"2025-10-03T19:33:41.835954Z","times_seen":2,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":12,"dns":0,"connect":3,"send":0,"wait":4,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/prizes/cash_wheel.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.405Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/prizes/cash_wheel.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: TCzs4oA2jr7XFG0W7+Dez5E9sqVXGIjk9Au9XtAtwRgf26gG1qqN1XC+cSi1602d6mmwrKrvoLUEMGw7dedC24vzMpFFLJ4D8IVC7+F3he0=\r\nx-amz-request-id: 7JS20QPBXJ3ZZJRF\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"4a07b037a0c735ca8aaf8946729dc37b\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 12992\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":12992,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4a07b037a0c735ca8aaf8946729dc37b","sha1":"477046b40a06d76b1ebbd035fd16f4f4a3f862f7","sha256":"74887bff9e60cde9f51fa728d01dff0e6254f4dc0727db12c185f55a3520d70c","sha512":"a6fa2a74582b5c6d78eb37961ba4e0a73a8fafee5eb1495a3e28e2ebbb768c73a68f1d9066e2aa091356f9c705f30c14badf8fc1c99b395e6b510450977316e5","ssdeep":"192:yzVaFBF0WYflRB/2pnDcKxBO/KsM6K7sIro5vL+oQm5g624iSd0knoK:yzQFBqH9GnDcK4Ks6oQO524iSdXn5","tlshash":"7342af15f7da5142f09a6fb440b4c707c982e49a8a91d22bb44d48467fe16f81f3f18f","first_seen":"2025-05-29T03:26:45.912339Z","last_seen":"2026-04-26T19:28:16.891084Z","times_seen":7,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":16,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/locales/en.json","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.432Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/locales/en.json HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: bPj61udWOpbWPTGtSBIMT+gsxBfrAEL05+aX31yOWx9AfBQiBvHXIHX4a/iMj42z7/Mr2FyZKc8v9+E1H49MY8IWofnM4n7o\r\nx-amz-request-id: 7JSD28G2CZ0EB6F3\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"7cb5704f1dfe5d48c22adb75079fceb3\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: application/json\r\nContent-Length: 2041\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2041,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7cb5704f1dfe5d48c22adb75079fceb3","sha1":"473ad7337901e487d3c99d8d317c62b1ce459394","sha256":"11001817245bf20de0aac7f9e401f3085596d04b7413c9b3164482ba5ff76db1","sha512":"91af2a45fb08c5803ae138adbd7f44772f5a3bc1dc48a17727d962efbf2dfb0b33b15365759dbc4118ae69044de440760cf38e9354f7b48ce753e7bf1be6c054","ssdeep":"","tlshash":"c141dc26e6904e2705c622629c5a6462a71065af5f01351c7f0ad70e4f6ea7f327f31e","first_seen":"2025-09-30T10:15:57.239493Z","last_seen":"2026-04-26T19:28:16.815593Z","times_seen":5,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/man/m_4.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.461Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/man/m_4.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: D7quOQwdsNd3PVW4ys3CrkRzfeKDLm34ezt4XYGMO+NV32PYST5oESSkgK7cZ7zcwswJEr3n0jzsG1J89ACoCzfrAUkgorZF\r\nx-amz-request-id: 2S6F8NYR0454FB7M\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"4cd7005f4a9a43ba9eaa8369f7e92402\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 8218\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":8218,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"4cd7005f4a9a43ba9eaa8369f7e92402","sha1":"eed82f75e736357f9e792906d75841964d35536d","sha256":"92744fca5dd92f833e8a4e2f1ea3a333baceb5e7fc8dc5be6a11b6995fbb2fdc","sha512":"8477a38b14c1788b68c614441e1ace9635e7e1fc247f992cd6e431dfe7668f66a36f7b627cb96223ea276865ef0173f56cc8ced0cc4ad1b57062b5eb5f491d55","ssdeep":"192:FzhnqF2zxJraWuCZ+JRF+cOyPhc4TzSlOioAOe:FzlqigO+vF+cXRT2lPoAOe","tlshash":"48029e5ca7c30b01e8a9cbb508904f63e6df5f227489e1f69306e1372e856dea7148d6","first_seen":"2025-09-13T10:25:31.520204Z","last_seen":"2026-06-03T05:29:17.620465Z","times_seen":19,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/man/m_6.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.466Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/man/m_6.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: UQiTMLiVyHW1U0bri7i2dBlnDxhYvOi9T64tZ4grIx55lfZM3qTXFmb6ftzxKzIdVUIah19TbKk=\r\nx-amz-request-id: 2S67YEFS0QST74DM\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"6f82041605c7957e57e232a5517896ab\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 8768\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":8768,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"6f82041605c7957e57e232a5517896ab","sha1":"697977841621c5b76defa9c827df6dd39b5eb798","sha256":"c46ec66d83215648d4f7e3c6ed33dc3bf00488463b1172ce5c3bda91f172bf31","sha512":"3539c7fcf60fb4642893c9e53f01189d745f0198bd6b33ff757222c1d3951e47e92a71ea05ea8e7b271a01018f0a563a1beb3e071277f24630ff63b931a0aa77","ssdeep":"192:BzMAa/5z8cWC5rjCkGxa9TF+QVWmtPW2HPRkZGaZ4srojlnve:BzMAa35t9o+WmFVKGa408nve","tlshash":"6702bea79de3c342f5a1077e81699fa2c7191e0ae2c632fb909b020f67040d1ee4da30","first_seen":"2025-09-13T10:25:31.513017Z","last_seen":"2026-06-03T05:29:17.629328Z","times_seen":19,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/styles/style.css","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.401Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/styles/style.css HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: fsZXvk1R99wbDGho+GTeE+bGWUrXVN/Z+SFF0cTvhKPW0Uad+sgttXwNNTnGbdOwrCC0kc8EkY8=\r\nx-amz-request-id: HRBGT06YCDKSQBZ8\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"211ea4b5db9d28224890471972cdf0a2\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/css\r\nContent-Length: 9001\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":9001,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"211ea4b5db9d28224890471972cdf0a2","sha1":"f9669c40611a3e006ac446b92f27ac990c11ad48","sha256":"ef878fa1b88452061040b077b2f32769c5ebde98f8b140401fbf81efc1fb9a31","sha512":"ece30aeb184b737fac1e514bc9fd688bf5db831b6f63d077fc6e099f11fac11fcb51e8401a041e8cc3e9dc770f371642d0556a7df31ade7e1d543c4cd64a625a","ssdeep":"192:1tUMTNI6Edi3W+laFXldzEBiocU3IQq98E88zAIeWuemT3hd3j:9TpEdVFXnzqIQiJ8o4Dj","tlshash":"e702f1c72b781504b41fd8a8b5929f96736c8443910fc97c6bf1205cdec92da69b3b8d","first_seen":"2025-09-30T10:15:57.244623Z","last_seen":"2026-04-26T19:28:16.817775Z","times_seen":4,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/generateComments.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.402Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/scripts/generateComments.js HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: oKvN5Ur7UEcIP5kO3A/cjmnfJF59euTmjnBhlLuiw9BZD0Tie36OJ0U4HWeLKYpE6A/6gekvhLw=\r\nx-amz-request-id: HRBWDMQ976X64JXB\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"0913f226d94ff4d5b1820395e391f0a8\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/javascript\r\nContent-Length: 3844\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":3844,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"0913f226d94ff4d5b1820395e391f0a8","sha1":"162fdf88117453bcc8fc755ae8f3be07b06461e5","sha256":"03e5391aafeb43e5795e46dab33bc129496c59be1743a2f8a7fddb1d352445cd","sha512":"49c4ec6472ec426d44966126484bd9887b38e43c4111fea968d8a0bd4e188de1e1de0caf4b22aea5f39343517f85838cb2346a23947df4b8f0388abd9c9caa48","ssdeep":"","tlshash":"6c816c6a90b210a1267232555b3f329075a0e28b5f44b12d7f6dc28c2fdce8f61b577c","first_seen":"2025-09-30T10:15:57.246719Z","last_seen":"2026-04-26T19:28:16.800062Z","times_seen":4,"resource_available":true,"data":null}},"time_used":29,"timings":{"blocked":11,"dns":0,"connect":1,"send":0,"wait":4,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/prizes/mystery_box.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.406Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/prizes/mystery_box.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 2LT5gGII/3poVOh0CvzV5WRD1bPOzt4WMWuz+ZMdk3NbdsUP8rupLr+lqpCVcvLmvGNUFTgUu70LpH9NocjXlAvGxlTrIG/xXBTYtKJOvX4=\r\nx-amz-request-id: 7JS4QJ2N0M7EH55E\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"e33b987c8e490cf6756bf3ebf999431e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 33168\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":33168,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"e33b987c8e490cf6756bf3ebf999431e","sha1":"790503eaa780d6830666fa8321ae0b8311afaf6f","sha256":"32f1fc9092074f2d810baf705a1bbc0c1bdb8b3c34093cba30e3e236fe7925fc","sha512":"cfb0c545431d3aaeec7937e4dc5d3526a914d64cfd61790fedaf7a22624723193a560d4d7bb12fa4ae2aca0f2cc6954a6335fdd91e7250f43d06c4bae53d4c4d","ssdeep":"768:cEgPSU0i0d2K4wwWABTdOomgzbsm46itt3KQpzGtbP/0wJ7RiCiDrR3Lz+oroSLy:cEgPSU0VF4AAfzmgP546iVnytL/v74di","tlshash":"c4e2e15fae0d1d2ec13307b4ada653c3008ba6b11acb7743c3ab36d75e54eb15a9c242","first_seen":"2025-09-30T10:15:57.252008Z","last_seen":"2026-04-26T19:28:16.8716Z","times_seen":5,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":16,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/survey.jsonc","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.432Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/survey.jsonc HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 4Mz7SbmZkny3nuS1SBjmQOLvinm/sq5LAOb/orOAktnAWLcPOUzQi44+mG3qUO0O4NCz8WoCmK1EpSWEcp34fOuNhhcc/Gli\r\nx-amz-request-id: 7JS66NMV7WG09V9T\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"94bfecc09eb8dcf0ce916442b2d58fd3\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: binary/octet-stream\r\nContent-Length: 1037\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1037,"size_decoded":0,"mime_type":"binary/octet-stream","magic":"ASCII text","md5":"94bfecc09eb8dcf0ce916442b2d58fd3","sha1":"5afacc24dbe21c8386feb1250a2ae6f68828dc19","sha256":"cd74c188cb9cfb903e49ff7f2f6bcef41419f586274914b7a86810d27109c0f1","sha512":"f60072c307e16da33f80ad001517d01ed23ca04ea4089c2af2ba88ad59a2c43db4c9844056afd6f8340d16fb90c19b26f1b186c9d04cdf3ca01043a4d85a4358","ssdeep":"","tlshash":"7011ce56ba484b7a50a23a111b2e22c77325c25fb339ac18755e4a0c5f98a3c53af2d7","first_seen":"2025-09-30T10:15:57.254229Z","last_seen":"2026-04-26T19:28:16.86074Z","times_seen":5,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/woman/f_2.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.450Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/woman/f_2.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: dicMC4Vy4NQUHXmnPtW5J85FGQk1V2+fILzibObTNz4i0zVIgUok3wlzUOgMK7b63RNANL7DSXA=\r\nx-amz-request-id: 7JSBP4NED54CMTQ5\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"ee2e7904281d4e76b7892045038688f6\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 10054\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":10054,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ee2e7904281d4e76b7892045038688f6","sha1":"74f9fd0ddce0317c50a794e845c3cbc4985677e7","sha256":"e5efc1bf85c477b3b51311c872d2426f54ece979ae0135a8cbedcbfea8a023af","sha512":"90c95cb5fbc7bca041cd0cbbbe8593f97c39cb70a536e87e66add7d22fa32a8d1d8097e931b7d65a78b74722ba843d0c7ed0b74c0c4d7e51921639e9113fdef6","ssdeep":"192:kzVQHNIa7Lh5xlP9CY+RVX0xPaXfpHxn/IXyK7ZGw37+wDAe:kzVQHNIa7Lh5HP9afX0Yv/kymL+Xe","tlshash":"7c22afb347949700ca2186f069e24f12a3515eb5c76ac353690908ae760bad2f07f25f","first_seen":"2025-09-13T10:25:31.519034Z","last_seen":"2026-06-03T05:29:17.653058Z","times_seen":19,"resource_available":false,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/man/m_5.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.462Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/man/m_5.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: X1x8gMEjS+ZwjIXBxUFj/eOdRQPlQIlj5u2b68gd9M/hP8oQkTOxNTDzScekN/EThrCtZQTehL7Hq6sRKwA5VK5tPZOnzumx\r\nx-amz-request-id: 2S6AHEZSXY9J59C3\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"ac4969cf91dca5e815db4d07b3c9b730\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 8964\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":8964,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ac4969cf91dca5e815db4d07b3c9b730","sha1":"8fa6401d07c99b0875eb16164bd98553c7a2b2ef","sha256":"5b77229cd278a7a917fab591287241e117d66ed9538d743f4dd644539ab82a45","sha512":"c8dcbd57895e7c3993ca73b9bcc5d98c906ccb26cd000c5b15ed4cf2778459e581bb511fbd17abda5390ed3396a338b2246c19ac14b55cba4d090c59f7866fb7","ssdeep":"192:lzMRZ2BzbQPajPTByFWJQeGmjddJXV8WX1s5aaDmFR7lvWRse:lzMj2z8mPf6lmZXVnFulyFRJeme","tlshash":"6302bfa27d40c64ec24024b2da2aff32c7ad8f7253a48b8fa504957c6a5ee134954f6c","first_seen":"2025-09-13T10:25:31.489257Z","last_seen":"2026-06-03T05:29:17.649065Z","times_seen":19,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/translateElements.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.403Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/scripts/translateElements.js HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: coU+edexqrYN69LoXxsCSIicd8feY4grZ/j6ABzCRrjd9j6uM3u+iSwbH8glU3gZZaO1ybW3oAE=\r\nx-amz-request-id: HRBRX6X7Q8Z3VA6F\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"489057de2a8ea27311f88dc150f332d0\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/javascript\r\nContent-Length: 2006\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2006,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"489057de2a8ea27311f88dc150f332d0","sha1":"68155d46b437fcd89db80e4ff321a22edae5c277","sha256":"695127681cfcda3ef1342382d9e8799d24a832ff4c01df5e6e77080776c48e11","sha512":"76fbdf1075832b062510ee2022d90023fe6d00a623a450771ee96c4b6a2ee935a01a85325dd7028c65e4c44ee9244c3d55eaf99f31474bbc8771ca34467b4782","ssdeep":"","tlshash":"cb41f21521f7022bc55724ab9fdb40c9fa385a031065dc193f9d8b461f84d3d67eeb94","first_seen":"2025-09-30T10:15:57.257128Z","last_seen":"2026-04-26T19:28:16.868858Z","times_seen":4,"resource_available":true,"data":null}},"time_used":36,"timings":{"blocked":13,"dns":1,"connect":3,"send":0,"wait":5,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/favicon.ico","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.444Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: HjImreeo0faAJg4Gmb4fbrI3/RN6WQ2TFMKcvwwv3hOBC79WW+xV2AQH2i91mHMc1w26K2B1mkM=\r\nx-amz-request-id: WYSZ9YSSHYEBVVD3\r\nLast-Modified: Tue, 11 Feb 2025 10:40:07 GMT\r\nETag: \"eff71ae1246bb1f8a9a64d6a52869fb5\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/vnd.microsoft.icon\r\nContent-Length: 4286\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel","md5":"eff71ae1246bb1f8a9a64d6a52869fb5","sha1":"0c994fca8f6cae161e0e6fbdfd11cd04f736d706","sha256":"3de3ab20bc24fdf9b7a384d8a6b006ba217915db700132439f143bc1a37dcbc1","sha512":"e68ff5470cd060c7694a72d4b2558fa8eac26e6adc1b3620dde34b716377746f3e2e9ae86e9efe6f8c0a90ef33e1421ef686d575f59b3a75b73fa8af454c3691","ssdeep":"48:aQ14KTNsjdCl7yiPgjsoszJAhisGfst8sbsXsElltIvm5IX:asBwdyOeHAhs+IK1X","tlshash":"e291af651bac98a6e347293174eabad8885ffc7657e31d82d28c70ed85356183cc381d","first_seen":"2025-03-29T02:19:35.189295Z","last_seen":"2026-03-08T22:18:32.546969Z","times_seen":45,"resource_available":false,"data":null}},"time_used":2,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/man/m_3.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.453Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/man/m_3.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 7j+d5RTfX4TgHRUZTNi5eS9g9Ix697+UBYTi0HkKXoA4ZmQ1m7jJveb2b5wa3gt8Oiv6mTkeaPU=\r\nx-amz-request-id: 7JS55XC5RDTRNMZT\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"88b6deb865bfe7a4ab85a2e004a86ac1\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 10716\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":10716,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"88b6deb865bfe7a4ab85a2e004a86ac1","sha1":"8d4b730be576a4173452ed629d2d06bd145e32a8","sha256":"bcd46fb84645691c420602d72165328466524e8b9df997f0a78c999a456c5780","sha512":"3673574de1f8dc58c22d5026d4f309fb4ab9556e1ba783bef1c151016941ff1f87af4cfee8378b12ee129525518462b9b5ac6fb8e185e0079efdc7b01d6e530d","ssdeep":"192:czgXaEV7umYpA6vZdWgCR5VX813BKhcFik2a130eoqBfjq4oVWF0XDW6v8Pe:czsa09shdWJs1RyB1wroyboS0zmPe","tlshash":"6522bfddb6372383c2715b387af557fbd252383a825f862276c18b0959c8a95b03c525","first_seen":"2025-09-13T10:25:31.514996Z","last_seen":"2026-06-03T05:29:17.636051Z","times_seen":19,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/main.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.402Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/scripts/main.js HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: x3VuTwJ7PxAundtn9eFpdgqLkhfDOVvB+wtJsADpaV/OfBqRZ7hv2nr4goTfrHN7v2lXz06YuQ6UrpD6PC/rzXFDbX0bapy3\r\nx-amz-request-id: HRBJXHGR94SXN3N9\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"7bcace2890f1e07e4012eabed8675717\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/javascript\r\nContent-Length: 11129\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":11129,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"7bcace2890f1e07e4012eabed8675717","sha1":"0061e651c6dd9142be61a241f676ac8791ec3704","sha256":"81d8a78f908881a4ce57c4212893f9aae9bbc287c32be298f093fe6cffd14649","sha512":"637fc9d8c14756824c48a25721bb41613de40970686006a9a4af81581c333da362a2af4ff11696c32e730692c00858fde3f16a0f2292a07e73531bf69f1869eb","ssdeep":"192:VELitkQCRrhQC7QazQhZEQ+b5un1iSiL5zDUiSL6EX4ztOIqksdOBiMCjkiEiEHQ:IrhzMGSiSid388BiiiEiiPxitim","tlshash":"cf32410525b74638816365ab9bab46167732914b3e08dd1c3b2ce3001fdd99e92fb7ec","first_seen":"2025-09-30T10:15:57.262367Z","last_seen":"2026-04-26T19:28:16.844996Z","times_seen":4,"resource_available":true,"data":null}},"time_used":33,"timings":{"blocked":12,"dns":0,"connect":2,"send":0,"wait":6,"receive":0,"ssl":12},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/shared-YENF7BNC.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.415Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/scripts/shared-YENF7BNC.js HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/assets/scripts/autoexit.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: zXNdNy+ny6M+9WH4/6TpWVlOm5d7wQu16wFvl7tkWyw588X2zEK1zrkwbaeD8tZoLM3i+LawHo9rsS10f3y/xGL3f8P08okV\r\nx-amz-request-id: HRBJBKVB4ZRCKBFV\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"1fa0e36f829e3be6e7a97ebd59ea5271\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/javascript\r\nContent-Length: 4234\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":4234,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"1fa0e36f829e3be6e7a97ebd59ea5271","sha1":"3341b1d62c76df3ff6819eb846aef1e2a2337ca9","sha256":"a768d4cad01e75f69740ffb4f0fcb63de89cf2c663b5360a1b2712149f6f1f01","sha512":"3aecfa8bb53aedeeee741d1ab971230b9e61d18cdd83e69df2f4d4d9a89143f11495b145fbf457b27089f0aabba04f69a470e31bee858cedac3da1e1e99433a7","ssdeep":"96:WmMI0eaH/WZCyqqZeBogQh9qiSyJC+4UpEi+3hyQxy1y8v:MdHeZtGOth9q7yJC/aEi+xyQxyMM","tlshash":"4f91bc1d07f316b781b730188b4fe86aab6a89473748ce487e9c5b501f18865d6e27c8","first_seen":"2025-09-08T23:30:06.897907Z","last_seen":"2026-05-10T19:56:13.041471Z","times_seen":34,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/shared-P22NF6LM.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.415Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/scripts/shared-P22NF6LM.js HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/assets/scripts/autoexit.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: yLi2sLgUOiyB60VeGm1k88y2gejB6nhOTJrvLTAQLm/HgbG+mzm/1v/Kpnvqk+C7RFBeBUC17XQ=\r\nx-amz-request-id: HRBYN7W5ZRCQEJBY\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"08606ce09fae6ff973e73b9467ea8956\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/javascript\r\nContent-Length: 6949\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":6949,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text","md5":"08606ce09fae6ff973e73b9467ea8956","sha1":"110b39554d8a4f59e2c710bf56e33892943530ff","sha256":"b691ed2532989969f5f6eb8bd78ce76876124c18e13dae5cdf8576765fd103be","sha512":"2e96bc3c9c989030e19b9c220b65b326a77120d28ae6d8fb0ed4914c01c68a49f44a694f30987955770e4a95ad118fb3883623d9719ccebd151cf7f99ed4de1e","ssdeep":"96:xiUTPwN2kgGiQf50Mzd7EtZp5gnFP+f9t1Q5faWmL4a20ICxTRcR1:VApiQf50MVKZp5yFP+f31QxmcRCxTo","tlshash":"1be13f2c95b7928701e711ac061fa226353c991b3e88f8c87eac42542f6ec5f94f27dc","first_seen":"2025-09-08T23:30:06.888269Z","last_seen":"2026-05-10T19:56:13.05057Z","times_seen":31,"resource_available":true,"data":null}},"time_used":7,"timings":{"blocked":4,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/locales/en.json","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.440Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/locales/en.json HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: bPj61udWOpbWPTGtSBIMT+gsxBfrAEL05+aX31yOWx9AfBQiBvHXIHX4a/iMj42z7/Mr2FyZKc8v9+E1H49MY8IWofnM4n7o\r\nx-amz-request-id: 7JSD28G2CZ0EB6F3\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"7cb5704f1dfe5d48c22adb75079fceb3\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: application/json\r\nContent-Length: 2041\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2041,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7cb5704f1dfe5d48c22adb75079fceb3","sha1":"473ad7337901e487d3c99d8d317c62b1ce459394","sha256":"11001817245bf20de0aac7f9e401f3085596d04b7413c9b3164482ba5ff76db1","sha512":"91af2a45fb08c5803ae138adbd7f44772f5a3bc1dc48a17727d962efbf2dfb0b33b15365759dbc4118ae69044de440760cf38e9354f7b48ce753e7bf1be6c054","ssdeep":"","tlshash":"c141dc26e6904e2705c622629c5a6462a71065af5f01351c7f0ad70e4f6ea7f327f31e","first_seen":"2025-09-30T10:15:57.239493Z","last_seen":"2026-04-26T19:28:16.815593Z","times_seen":5,"resource_available":false,"data":null}},"time_used":2,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/man/m_2.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.452Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/man/m_2.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: dw6oNKdUBlY8Aub7jwYJDDfNzcMT4Qhwq1z3hvCV+r1kUhbUMrP8N+4Tf0F+Rx6uTln00lwA+tFNNTyCL20SH3Iy6JKqi5uQ\r\nx-amz-request-id: 7JS9NGSJR4MYAKH1\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"2dde457e2a92183539f6aa3bd63ba4b9\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 9782\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":9782,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"2dde457e2a92183539f6aa3bd63ba4b9","sha1":"31f5cb3050ed13ad4655e401dc6776dc440bf7bb","sha256":"a102a7146164463cebf409d1a2ce2e0d792388091de4b3513f733ff350fa0196","sha512":"2a4653b8fc0278f1b6825e5837fd85507bcff3f5ea08f7adc5bb72f745ad7f1f0aa36e7e78fe9da9247a3b5233cf5a6030e653c28aeed9272ff2b94ea7c2baa6","ssdeep":"192:fzR05stJsKXuLssD2qJ58tec0ppO6buBpgFwrRIe:fzacsKXuLsy2qJ58wZPV6Gw6e","tlshash":"4112cfeec06866c1c46a4734bbd6370ec34f1a1c57b8962b23032d164609f563e3e6ae","first_seen":"2025-09-13T10:25:31.505259Z","last_seen":"2026-06-03T05:29:17.61845Z","times_seen":19,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/index.html","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-30T10:15:29.955Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/index.html HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 1LespiXlG/1mi+0RtOiLENXIoUw4e/qCDvphqexJ7+Uq1Nou1bxE9PC1ADQ4shhQICu/fSfDrxs=\r\nx-amz-request-id: DQ4H2FNE24G7R46N\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"956dfdc085956ce492bfffe070fe8616\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/html\r\nContent-Length: 10203\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":10203,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"956dfdc085956ce492bfffe070fe8616","sha1":"ff35ee8b87f04ee769a57f2e3c5fb4c064ac6dc7","sha256":"61df1b8dc23f3dcc22de4e0fd18b50e090754247eb1422987f926de891b7429a","sha512":"b3ecec0dc67764ce9cd50ce0e58efa110833a789d3853dc8a2c3bf443a0f6ac04c1f96910300d7141a58f6445060b63a663b9e3c9ca73f4c85d89acb99b0b087","ssdeep":"192:GiP3rsy1OrTslVp2HfGsF0XZWA//G1afR5:PP3B0rwV6rwX","tlshash":"44224f6068fa4877415790c7eba25f973ee4e207ca16864532fc13e81fc2d96da4f61c","first_seen":"2025-09-30T10:15:57.268758Z","last_seen":"2025-10-03T19:33:41.831231Z","times_seen":2,"resource_available":false,"data":null}},"time_used":407,"timings":{"blocked":16,"dns":1,"connect":2,"send":0,"wait":375,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/setDate.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.402Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/scripts/setDate.js HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: /mK47zKEEH/rLmGjQKKbHIgwWTiRJKTGc7tgNHDOxQbXk4wCQ0ypam09Ip/jDcK8xSPFWrJ81gs=\r\nx-amz-request-id: HRBZ19YFG472ZYWP\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"1f853c71f11aa858d2a8dfb41174ef68\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/javascript\r\nContent-Length: 296\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":296,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"1f853c71f11aa858d2a8dfb41174ef68","sha1":"f58e15e37a321b22ee189d603cc0c750d3e148cb","sha256":"acc432b753fbfebe912afd5d39a4e1d1a2b97dd33b41bb82dc8488cb6c93d043","sha512":"6bc13ac1adaf882c26e8e8bf3baa0917e43724bbf7ea9cf4d0df83956d13023b51d107502d2752bf835825f52f583c8c6e7998b7bd16967b43c338a4e2270517","ssdeep":"","tlshash":"c9e0c21212980134d3240093d2ca8ad5fbe282f57dc5d22b6b4c444e9ce4c43d2febc8","first_seen":"2025-09-30T10:15:57.270611Z","last_seen":"2026-04-26T19:28:16.802435Z","times_seen":4,"resource_available":true,"data":null}},"time_used":32,"timings":{"blocked":12,"dns":0,"connect":2,"send":0,"wait":5,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/spin_button.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.406Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/spin_button.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: DJJaIK6+LF/XxOh1BH2vyukr5zWY0YvNb754vzDGnx+yp406tT6GEBHLWfNYCjiNuIhxLr9nPrA=\r\nx-amz-request-id: 7JS3Y9Y9WXX1CPBA\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"ac1200e6de805438a39b857df7c12546\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 5234\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":5234,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ac1200e6de805438a39b857df7c12546","sha1":"91d29086b81000d29cdf2310c418ccf125cb5eed","sha256":"dc0ba4e19f0fc723d89a48adcdf466ce3cc96d38887d1c6e40f8cc2d013be216","sha512":"c7349b44d11ac91064ca0534d57aefa9fb0faaac27bcec0234a3557a382cc28db732d4b42e78ba180008dcc655ee66a0bed355326911ca27e5e3b72b6f9af4ce","ssdeep":"96:TOtt2Y8T3dpFJYo27PakKH0K1X84R2dw2wNzGF:TOtYY8bjFibAX84R2m2Ak","tlshash":"4eb18e7c405b370c9ed48ba1324c439e962fdc4e5e1e06a3f88e1245b3744ab057cb7a","first_seen":"2024-08-23T13:22:39Z","last_seen":"2026-04-26T19:28:16.804746Z","times_seen":610,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":16,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/woman/f_1.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.406Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/woman/f_1.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: aq4QRJpxRjdnI278wCT3sKsS6sIDSVbKB3j9bcqfHtxZpAJS+eGPKkW2CMPgmRCN+qiDoKHE9hV7qDgNpWYZ9ujoqvRGFVEf\r\nx-amz-request-id: 7JS1JJ16992HX45E\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"b2ef8b3c5fa97ad236f36630046c7b10\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 9686\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":9686,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b2ef8b3c5fa97ad236f36630046c7b10","sha1":"4be38f35a46f2b04ba4be0219278c77e9661b644","sha256":"4cd9816585b9e2a220e9cb2fb2a15de477101ff4b04f1723d69f8e504e7b31fa","sha512":"35cd20277267076ad1b43542c902addcb91cb56bd81ec7885427bcb9032e79d5faf66e64180714b096264e7049c7ce30f6448e4d578d4cf7a9608a7aad9677c1","ssdeep":"192:Czkv0c/w0PD+l/ruIBY5tuJz7VaRsuyO+Jzy91N3w5SpePMe:Cz40UiRN6+7VaRsuF+JAN3wIde","tlshash":"f312be368b034bafd4a08ffbb4b92313865079748494e25fa82922467461cfdbc09ac2","first_seen":"2025-09-13T10:25:31.503857Z","last_seen":"2026-06-03T05:29:17.650909Z","times_seen":19,"resource_available":false,"data":null}},"time_used":21,"timings":{"blocked":17,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/shared-SMYSJDQI.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.419Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/scripts/shared-SMYSJDQI.js HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/assets/scripts/generateComments.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: owCNtK2PkCxoiTjv095+iOcp2CV4UrbU4Ctaf6UTysg8svQs1YTEjsolE063PMcqA7/ezGGS0K4=\r\nx-amz-request-id: HRBPMEVS92BGT2CW\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"c61b9d8059f66a928bf46cadc62bd75c\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/javascript\r\nContent-Length: 377\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":377,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"c61b9d8059f66a928bf46cadc62bd75c","sha1":"8b519789879d3bc08cc6bab999c1265db74cd45b","sha256":"8830b7f6a359f04b662a17d3eeca57914f21020d2cc67b78d9aa5061f9c3cfa4","sha512":"bb83b31211e8d2b9ce426fec929d5d85df879d9c7f35219804091f9adb15e2ae773ec6c11e00388568cace2a2cbe5f02c15fd43968996e6db7c2470b8ff706ed","ssdeep":"","tlshash":"93e0685846b7929701a322ea47c79bc1b03a68063319d889332f82000f4ee0f8aca8cc","first_seen":"2025-09-19T19:25:59.121845Z","last_seen":"2026-05-24T20:59:09.225207Z","times_seen":10,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/woman/f_7.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.464Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/woman/f_7.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: Z6NO+ia+kajM6KHZ7tA0tMzQqaDNEpnbLMyyzj6nLQnNk406phWqEMtcEGhAtrZ1ZJYFfi3EJd8=\r\nx-amz-request-id: 2S6E158MQTPGFN7Q\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"08ad6c15be5073453a4e36f7e0bd910b\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 9480\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":9480,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"08ad6c15be5073453a4e36f7e0bd910b","sha1":"ec0f9ab22581097383177391af888799b457e172","sha256":"d9b5e2bcaec5b3b0eb8ba9c0d0bde48816d28d7d66eeb83d9433d4810c775e4c","sha512":"51b17a2f975f5a2eb25ab661ab4c86fce65f06927d3109e0c7c5722efb3a84b6eb84525b1726c918d38734ecb2f288d62e690e8beb9681ae4d0793193c5a0770","ssdeep":"192:szS1g3RRnUlqmk8JepT7v8hfhQEka2o3IJGd1wfeQWZ++a8AkUKJFw3LQuBTse:szz3bU4pNpTIhhJkt00A4eQWZr6Khuie","tlshash":"3012ae31c3aac266e71b73345d80d735e2586692286dfe187b06ab345ccb8d25e5f188","first_seen":"2025-09-13T10:25:31.500615Z","last_seen":"2026-06-03T05:29:17.628087Z","times_seen":19,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/confetti-1.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.471Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/confetti-1.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/assets/styles/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: +dUUsHo9SVf/BFioxptg/bTjzkYuih+OSZB5e0G3xXHHePaTyRtV31uS03bsU9M1VgMMIphosBsiJ3y0I21raSpS7F0BoDWkhBfMsBD0sBc=\r\nx-amz-request-id: 2S6BHY4M64PDYE19\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"eb224b5a86e8c9f478bd6f2a8c3c53ac\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 11774\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":11774,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"eb224b5a86e8c9f478bd6f2a8c3c53ac","sha1":"0bdc5a91bb1c87fe55b023ee6cef886edb64967e","sha256":"e910f36c92776b4e4a415316307a6cbb4d4f039bb8d66dd094c7b90d76f6fa1c","sha512":"635904390f78d22b08f599a0ee6829f5e308c957f744a4a9366c6609dc3d7729631c158be5050cf00ae3ec60f237d5e9696966616ad2499f022328b0dcba1e1a","ssdeep":"192:EX6TaOD1ObeaLP9rKLqqCE3bb6fq3w+MvU9nUxFD3Xnz1eNp2myNTAH/Ib/nllDz:E81obeaj9rKXCYbWKvMvQURRefzWTyYZ","tlshash":"d632c004a0e034ddc6101a7fb9218153b01b9f7d65a49e17bc327177e8fe08bad78578","first_seen":"2023-10-18T16:22:08Z","last_seen":"2026-06-11T05:01:55.031013Z","times_seen":1448,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/confetti-2.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.472Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/confetti-2.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/assets/styles/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: yqldwrv79xs4Cs1D348LK/Itr0XtACHq9muF1Aj1kgNG5iV9oJLbO38Ba8N5KPsUbiCWNkydsKg=\r\nx-amz-request-id: 2S66PRVT57B5ZMME\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"483d298f3477d9b9a9ed85e2997eb888\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 4258\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4258,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"483d298f3477d9b9a9ed85e2997eb888","sha1":"52e1956082c558621f102ba813e7bdcee3fcb31d","sha256":"24763cff62c7e5d6aa028e7bc528010333a062aef7c5682c2dfdc7bfbcece822","sha512":"dde70cbaccedd4f8ac6d0dcdba646cd812e9e4bc7342b8ed22cb9ef25d89d178e809628d466f274d3eebb9b6fe0f15ab8141f6c4f3bddb6d49ab0d328121322c","ssdeep":"96:vlAX5DzPOoZ4p9AxCqjJzwkYfYz4y8lId6vTvGlyBVt:vlApf34jMlLYfC4ysiMrTp","tlshash":"a5916c45829d4cd344eaeda19873f1c4d93384361ebba6a6d36c0a7811ba611a4071b5","first_seen":"2023-10-18T16:22:08Z","last_seen":"2026-06-11T05:01:55.019808Z","times_seen":1448,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/confetti-3.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.473Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/confetti-3.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/assets/styles/style.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 7EikVUYLoXR97AsdUslRHtBCdM7GQuXoh8WJJi4V3f/bp9Qmm4uwpDYpLVJwIf9VDZBHGZRDrHakDBGUUgOXeUfhu6xHVPym\r\nx-amz-request-id: 2S62TAM6GB4SSR5X\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"6ffe537f32b7be06a870808ee94dadc5\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 7428\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":7428,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"6ffe537f32b7be06a870808ee94dadc5","sha1":"598b8776ac199d0d8737969255c81da7c2cf16f2","sha256":"e0ddaa01c812e3cdc7963b53edf9a53867a1930a7a566edeb872a0f36da94f7b","sha512":"5703851379baac166143a91cdf1513e9db8792dcf8b38a215d7609f490fac61e19b3300ebdd1b5e75b488e9baedb43f4575d043c5a462d3bf7f18686a1eec278","ssdeep":"192:h4xIU9cJ0fLnrUeEBvtsVvE1hUGx1e9DKa59kZoA:O1k0fLIeUj1Px1eNKKqT","tlshash":"47e1bfbbd667b04859e1f4c724501f89076ae0b7a68e93ca4970d6cc3e07823a9c3d5b","first_seen":"2023-10-18T16:22:09Z","last_seen":"2026-06-11T05:01:54.993416Z","times_seen":1448,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/scripts/reverse.js","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.404Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/scripts/reverse.js HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: z3YFDSQIvnHq/YoXKkQo+WDfMNFJJ02BEFdhCV2gpjO32MmVkCM7gN3vpWWUyeJNsuz40PdrUzY=\r\nx-amz-request-id: HRBRG53MYJ38Z32C\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"13d5fe328ce322fa37adc1b64f69a2fc\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: text/javascript\r\nContent-Length: 1306\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1306,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"13d5fe328ce322fa37adc1b64f69a2fc","sha1":"f946b6a04871af2ad8ed2cb7a34b83472c3d902d","sha256":"e61ad10c9735a6c434b536b2609954dea9925b5f9ee6803dda2d035cd2f4d994","sha512":"54bcaaaa2d0622a5ec5b60fe997ff4a567ba3eaa97bcbc39d7ac9d0e6cd742ed1edb7c936dc95510f8ac8f14270ea6d2055a8ff65d6042372504d00f93bb6e8c","ssdeep":"","tlshash":"8e218c4f42f7093b48f328948e5f7171773615832608c8997e8c9604af5ee5fc362a89","first_seen":"2025-09-08T23:30:06.87231Z","last_seen":"2026-05-10T19:56:13.052338Z","times_seen":31,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":9,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/woman/f_5.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.463Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/woman/f_5.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: EKghgu4TlxhlS0ngTPrJUqD96dhXuC+U4kZa4mHqefRSMGW2AfVF2G05AKUj3haBLLkujydMzJDWqfciX9sKIvyt5gKdCk28\r\nx-amz-request-id: 2S6EV582GBFTAJ18\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"56a9fcbae736417f176f4176d45214c8\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 10796\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":10796,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"56a9fcbae736417f176f4176d45214c8","sha1":"b61c0c70f6bc02c5171c029a1a3232e81b9d8206","sha256":"b370bdea61b1cb297bc2f4e89eaf88593431a189bf2a1ff2cb4bac3882bb31ef","sha512":"d9552c771330bc12b7636c7c34d69f39c44f3d5cda0e3d30809c40cae9d42d850f6a1397115bd08ef054c418422a326c6b3b601d0d35b3ac4715f87e63e46f65","ssdeep":"192:VztrrlDWvPw+2GCSQjSmg7GNcCytoxCj0DFWaudyiezCwGrSjoeUe:VzZpDWXLn+DooiiFlJzLGGEeUe","tlshash":"4522d0350b285d41f1da6c740a280b47df1e8f3c5af0c5255ef6b815ee9a23af60816b","first_seen":"2025-09-13T10:25:31.506796Z","last_seen":"2026-06-03T05:29:17.626871Z","times_seen":19,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/prizes/mistery_box.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.405Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/prizes/mistery_box.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T01:48:50.752837Z","times_seen":16373065,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":16,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/locales/en.json","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/locales/en.json HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: bPj61udWOpbWPTGtSBIMT+gsxBfrAEL05+aX31yOWx9AfBQiBvHXIHX4a/iMj42z7/Mr2FyZKc8v9+E1H49MY8IWofnM4n7o\r\nx-amz-request-id: 7JSD28G2CZ0EB6F3\r\nLast-Modified: Fri, 19 Sep 2025 12:27:15 GMT\r\nETag: \"7cb5704f1dfe5d48c22adb75079fceb3\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: application/json\r\nContent-Length: 2041\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2041,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"7cb5704f1dfe5d48c22adb75079fceb3","sha1":"473ad7337901e487d3c99d8d317c62b1ce459394","sha256":"11001817245bf20de0aac7f9e401f3085596d04b7413c9b3164482ba5ff76db1","sha512":"91af2a45fb08c5803ae138adbd7f44772f5a3bc1dc48a17727d962efbf2dfb0b33b15365759dbc4118ae69044de440760cf38e9354f7b48ce753e7bf1be6c054","ssdeep":"","tlshash":"c141dc26e6904e2705c622629c5a6462a71065af5f01351c7f0ad70e4f6ea7f327f31e","first_seen":"2025-09-30T10:15:57.239493Z","last_seen":"2026-04-26T19:28:16.815593Z","times_seen":5,"resource_available":false,"data":null}},"time_used":2,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/woman/f_3.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/woman/f_3.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: YEyP+TzQ/Q+PGf9RIO7NCBVjbCxDJVS54BLkyV7iiLACAP92eIpD1NTCuG7lcdiQ9PJ7g2F1TPlvUJvInDtrqA==\r\nx-amz-request-id: 2S6DGG32GSBXANNR\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"ca4b691f5dccb2bb714f1580866ac664\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 10194\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":10194,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ca4b691f5dccb2bb714f1580866ac664","sha1":"5e1837726df435de0eac801f74f82905550c7a2b","sha256":"83db995c70ac5418073cba81cbc43e56c02b25a4b8b1dc51f598d13eccb8dbb8","sha512":"5015a0a65a03bde4b34806b0d1f9eb015230c9c19d533c6c39b5bf47a30fa68c5ebe30d9e6ac11f44410673379cc320d06cfb50a0f704d9e5d62e8dd1bb87e60","ssdeep":"192:4z+EPVqTm+T8Qo7cgs1wCSGdEspMMgJv0gG/CgcDz/PdWuGpjMpTf6UKt/e:4z+/TmXwgs1wHQjpMMmsadPIhMpLJKtG","tlshash":"ce22bf044b939301da8458bd77e0af2da1aecba2434d4f15160bd02e3d2be6ac07c5e6","first_seen":"2025-09-13T10:25:31.49947Z","last_seen":"2026-06-03T05:29:17.619578Z","times_seen":19,"resource_available":false,"data":null}},"time_used":7,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":7,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/woman/f_4.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.459Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/woman/f_4.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: 2UBzbonb9GoDim68glaQkTCGhFkOiys6OTt8IHNMORaRGCn3U17eRTm9Dz2L5G6UW/62owtrDaWqO2jugOdo0blNpZqQulhrf9xFQjiP+tY=\r\nx-amz-request-id: 2S6D65TZJ642586T\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"861b53622e5ece77917369749dacda1e\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 10754\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":10754,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"861b53622e5ece77917369749dacda1e","sha1":"82260742834a3d918f4dcc3dc3e83e006ba19f6d","sha256":"45afcff6a48af9a4f760b076be560b67a294d8a8c3763ee6c9a0699f08f78a27","sha512":"5186b7fb7ee1cfc2ba623e922dfcc70d162c5f2a5fc26fbfe68988ea0cb715fc250660b02583c2060eed712c244b6f4de68a2f87f9c817b84a8e94bcb65a499b","ssdeep":"192:azglTxnpQaO1yx40S6QOo2bM8lZ9taE703zKQb/OgDtE9Szh+Re3e:az4JpQaO2402h2bTZ9f703x/a9Qbe","tlshash":"cd22af9813a4a1d1cbf376fd14da4a80eb8b2bb3d793914b174e42564d440f6ed2d29c","first_seen":"2025-09-13T10:25:31.488045Z","last_seen":"2026-06-03T05:29:17.641737Z","times_seen":19,"resource_available":false,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"iccku.com/prelanders/mystery-box/assets/images/woman/f_6.webp","fqdn":"iccku.com","domain":"iccku.com","tld":"com"},"ip":{"addr":"23.36.77.106","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://iccku.com/prelanders/mystery-box/index.html","date":"2025-09-30T10:15:30.463Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bameb.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Tue, 16 Sep 2025 13:42:32 GMT","end":"Mon, 15 Dec 2025 13:42:31 GMT"},"fingerprint":{"sha1":"DB:DB:8E:5E:91:E6:82:8A:E7:CC:6B:81:3C:E3:AA:0A:09:0D:2A:3A","sha256":"53:FA:0E:60:DF:FB:71:B5:BB:68:DA:64:93:2E:A3:8D:B3:BE:E6:DD:03:96:29:2C:3D:D3:E7:A7:9F:65:B8:A3"}}},"request":{"raw":"GET /prelanders/mystery-box/assets/images/woman/f_6.webp HTTP/1.1\r\nHost: iccku.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://iccku.com/prelanders/mystery-box/index.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: gExc9FqTdecSZj3O3PblyVT2hk5DgO7TFK7cIC0/6i+yR4UGB4KRMyFHKcr6QjlTZHB2F00B89FIXZAri2TlZTIz998fKtoDpDZJhZ9tEhQ=\r\nx-amz-request-id: 2S6A7FK6WDZ9QZQB\r\nLast-Modified: Fri, 19 Sep 2025 12:27:14 GMT\r\nETag: \"56f8521022f404971b583ae6ee2bcb71\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: null\r\nAccept-Ranges: bytes\r\nContent-Type: image/webp\r\nContent-Length: 11070\r\nServer: AmazonS3\r\nDate: Tue, 30 Sep 2025 10:15:30 GMT\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":11070,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"56f8521022f404971b583ae6ee2bcb71","sha1":"708d5801f0a69f0a4f423a1ad98534c1defdf920","sha256":"fe7da02b57d1ef24c40ce741c9f31c2c143dc3237151de3c79970dbef57c7cc3","sha512":"30ad79aa46305020fe3431c2b7fe471052188ef7cbd4dc27803415f72ae890d091392cc81f8bf18d7a388f506af144574d970367f6e19cab8b6b87fb4f73a964","ssdeep":"192:IzbOfIpSqUbA5t7k7HD2FNiLAFUHpoPZNXbQuuvma85WCySd62e:Iz+IJUEK7SFNSAipokuFatCLA2e","tlshash":"e732bf32572f3a5ac6f32b75c88067654508a27333f656ef43c34a02dea50429e2d5c5","first_seen":"2025-09-13T10:25:31.485534Z","last_seen":"2026-06-03T05:29:17.622098Z","times_seen":19,"resource_available":false,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-30","alert":"Sinkholed","trigger":"iccku.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}