Report - kooseboutoojooy.com/

Report Overview

Visited public
2025-02-27 21:45:17
Tags
Submit Tags
URL
kooseboutoojooy.com/
Finishing URL
kooseboutoojooy.com/
IP / ASN
104.21.49.72
#13335 CLOUDFLARENET
Title
Document

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
kooseboutoojooy.com	unknown	2024-11-09	2025-02-27	2025-02-27	7.8 kB	604 kB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed
2025-02-27	medium	kooseboutoojooy.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	kooseboutoojooy.com/homepage_src/js/index.js	ScriptElement	689 B	2025-02-10	2025-07-16
Pretty URL kooseboutoojooy.com/homepage_src/js/index.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-10 19:54 Last Seen2025-07-16 09:05 Times Seen1612 Hash 049d83d7668e2a78b7c6f889c0c632ae 9164c0af0f4a8b18f95e4abe0cf7ac864291f7fc c49854594971d9c303514c276b8e02821282f057c23c3014e18a2468d5277467 Loading...

HTTP Transactions (16)

URL IP Response Size

GET kooseboutoojooy.com/homepage_src/img/landingcraft-logo-transparent.webp

188.114.96.1

200 OK

34 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/img/landingcraft-logo-transparent.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
RIFF (little-endian) data, Web/P image
Size
34 kB (33976 bytes)
Hash
3b6354ff46285c250a4161d6facfd438
0c34e1a06023990a00d488e82ef7773ae5f702d1
c3ef2602de4c04a2b57ac9d50cc67967726579437e4882f129bc8aa4e9cdd3fb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/img/landingcraft-logo-transparent.webp HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: image/webp
content-length: 33976
last-modified: Thu, 09 Jan 2025 09:31:52 GMT
etag: "677f9788-84b8"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LF7piu0V0MSLPpl3N2X7N1%2Bz%2FQs5X3V%2FVa5OpONzEneq4mfa46Wvp3enKeiiGYUEu6vqylRAxYue%2F4r4neCvD%2F1qz96qW1DPFd%2FjJDsFMrYurPKU9FbmYB75aDMNJL49aU3OZDnz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 918b5ba92cc70b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=12153&min_rtt=2324&rtt_var=9437&sent=32&recv=16&lost=0&retrans=0&sent_bytes=19629&recv_bytes=2823&delivery_rate=10234&cwnd=12000&unsent_bytes=0&cid=db975211fba4d1b7&ts=392&x=1", cfExtPri, cfHdrFlush;dur=7

GET kooseboutoojooy.com/homepage_src/img/1.webp

188.114.96.1

200 OK

37 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/img/1.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
RIFF (little-endian) data, Web/P image
Size
37 kB (36920 bytes)
Hash
0185b48f310a7b5098d6d32eb4105265
6d553814287a0ef50f34088643a6a898341a7d84
92747e88a929d95d8f99e730f64e75a473447674bcda5f7c3deb0c50b8e3ba75

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/img/1.webp HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: image/webp
content-length: 36920
last-modified: Thu, 09 Jan 2025 09:31:52 GMT
etag: "677f9788-9038"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GQHAh0qanyHOBT3QxFLv7PA8%2FJlJCmDy3ph88Tu2Sn9F0%2F0lt%2FaOOGkTAReMTQdodXFXuDIJM7gn0FMdL8zLtHP2I1oGrSVg079WxCYKtQdmxVgUpMzpyltVjGvg7mcrYXQ6e5%2BC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 918b5ba92cca0b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=12153&min_rtt=2324&rtt_var=9437&sent=22&recv=16&lost=0&retrans=0&sent_bytes=8165&recv_bytes=2823&delivery_rate=10234&cwnd=12000&unsent_bytes=0&cid=db975211fba4d1b7&ts=392&x=1", cfExtPri, cfHdrFlush;dur=0

GET kooseboutoojooy.com/homepage_src/img/2.webp

188.114.96.1

200 OK

39 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/img/2.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
RIFF (little-endian) data, Web/P image
Size
39 kB (38978 bytes)
Hash
bfe213157eb95c5eff20a0c1463348aa
fdb88574a7c15b04f9288a59eada7fc4409f6be5
9189ac9cf32ba123da7cd056dd007029d77e09cee1028b9bd98bce2fdce9f2ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/img/2.webp HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: image/webp
content-length: 38978
last-modified: Thu, 09 Jan 2025 09:31:52 GMT
etag: "677f9788-9842"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=phRwYwvFNtPEgN1e8ikwx9qxMeu1SpFinGjsOGf5qD0lA4QmasftKGY8cj6zfgWOC7kd3A5pbJ882h4gqEmUrXpMgittm4X0Y185E3SHerKpBM5k6ygOsv9%2Fue%2FmcPxAYnr8dxXc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 918b5ba92ccf0b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=11454&min_rtt=2324&rtt_var=8475&sent=52&recv=17&lost=0&retrans=0&sent_bytes=43629&recv_bytes=2867&delivery_rate=351624&cwnd=24000&unsent_bytes=0&cid=db975211fba4d1b7&ts=400&x=1", cfExtPri, cfHdrFlush;dur=10

GET kooseboutoojooy.com/homepage_src/img/3.webp

188.114.96.1

200 OK

56 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/img/3.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
RIFF (little-endian) data, Web/P image
Size
56 kB (55542 bytes)
Hash
aef4b464bb0ac07d92b40e4260697fe6
2ce25ecbf464129cb2a0d5f8eea6b8efe494fa41
4700382727f580ef08f12411e4a3e0dba7d9ef010e8d27a426bda668af74aa3a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/img/3.webp HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: image/webp
content-length: 55542
last-modified: Thu, 09 Jan 2025 09:31:52 GMT
etag: "677f9788-d8f6"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xq67bgbHtwjt7oCjCOk%2FV6eyS9xE1VMeVTptRaBEHyMLdLnZTvwZTYJOcBlzWUU13LLUY14MyV2AerlqeNDE0WGccYlHLNusHuvn0WjoWRFLt1E%2BT1VlaqYTOTtkoM%2FrGLQvx4Kq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 918b5ba92cd40b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8274&min_rtt=1043&rtt_var=6391&sent=123&recv=23&lost=0&retrans=0&sent_bytes=122989&recv_bytes=3407&delivery_rate=4070699&cwnd=67200&unsent_bytes=0&cid=db975211fba4d1b7&ts=429&x=1", cfExtPri, cfHdrFlush;dur=0

GET kooseboutoojooy.com/homepage_src/css/style.css

188.114.96.1

200 OK

45 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/css/style.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
assembler source, ASCII text
Size
45 kB (45172 bytes)
Hash
9d5b48f95953885640c8db26c387aeaa
41efb2d435b27dc4c1c2ecf08ed8b1cf78224010
42082b60ff59fa6bc8952f3289958424ae96c5bb80ef0e65d806ce55bfd716b1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/css/style.css HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Feb 2025 16:38:33 GMT
etag: W/"67a63709-2ad5"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RkvEIKYQ4XJ8A%2FWcHunNyyo6CpOe5PkSdQUhVfn7p41nuGzP1I8EDXN15Lrekgwx5Nkulqw19IEXnpP7OmbdVNfosEnzNgIA7Jueha6CV2BMSeBL3I6oFv24cx2VoSfc5gXlpkmJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 918b5ba91cbd0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=13557&min_rtt=2489&rtt_var=8839&sent=18&recv=15&lost=0&retrans=0&sent_bytes=4309&recv_bytes=2779&delivery_rate=238636&cwnd=12000&unsent_bytes=0&cid=db975211fba4d1b7&ts=364&x=1", cfExtPri, cfHdrFlush;dur=0

GET kooseboutoojooy.com/homepage_src/img/article-2.jpg

188.114.96.1

200 OK

40 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/img/article-2.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 640x360, components 3
Size
40 kB (40073 bytes)
Hash
60e22b6dc04eec80277bc8e160779246
707cb92d332a0e3290c36e7612dcb288f1b60568
71d380e44f3e20ab4d1e3621333bba0303a59ff9897f7bdc4cc26d2f7a1c9a23

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/img/article-2.jpg HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/homepage_src/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: image/jpeg
content-length: 40073
last-modified: Fri, 24 Jan 2025 13:12:03 GMT
etag: "679391a3-9c89"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=brYT3XNZC9NBpG8QqdxVapXPVeaetlL%2ByN1uLkaxGMkVILG8lX8XWk4w7DeeaxST34vwuKZCrV7n0miRjO5FAgZbF3iMF8nP4ORJN7USjr9P0%2BDuzrIfzoqPau5w89QBXLBQhut4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 918b5baa1dd20b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7980&min_rtt=1043&rtt_var=5516&sent=214&recv=31&lost=0&retrans=0&sent_bytes=225147&recv_bytes=5673&delivery_rate=454622&cwnd=67200&unsent_bytes=0&cid=db975211fba4d1b7&ts=547&x=1", cfExtPri, cfHdrFlush;dur=0

GET kooseboutoojooy.com/homepage_src/img/article-4.jpg

188.114.96.1

200 OK

39 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/img/article-4.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 800x534, components 3
Size
39 kB (38839 bytes)
Hash
2275ddaa79c43df334c35de888d9ddb8
9c026ffdbf970e5c8c50f22082b05e635b62d023
3f2b94fcb34e5015db069b482e1f62639fbe8bc72632676031f60d3dc2a26c57

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/img/article-4.jpg HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/homepage_src/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: image/jpeg
content-length: 38839
last-modified: Fri, 24 Jan 2025 13:12:03 GMT
etag: "679391a3-97b7"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YNZftRVGk%2BxUXobdZ95G%2FbwPw9GA%2Fey69imMgvRCxl3%2BJXA2Zo57ey8S9v%2BKiPVdtTIlivTUY%2FmcyyxMHun9CryE%2B43hZ%2Fdd7%2Fq%2FZxqMNk6zh0sYlqNs43sY2izcUsPiBXrPCLaa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 918b5baa1dd80b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7980&min_rtt=1043&rtt_var=5516&sent=249&recv=31&lost=0&retrans=0&sent_bytes=266897&recv_bytes=5673&delivery_rate=454622&cwnd=67200&unsent_bytes=0&cid=db975211fba4d1b7&ts=551&x=1", cfExtPri, cfHdrFlush;dur=0

GET kooseboutoojooy.com/homepage_src/img/article-6.jpg

188.114.96.1

200 OK

33 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/img/article-6.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 620x412, components 3
Size
33 kB (33427 bytes)
Hash
f9efb984a42f8e65eee7b406000c2276
c003c9065dec1b686e1367cf53e248f587126b49
ea13dba4295b4dc0a87e31c1cd57044027acdd9e1caa4ee2df5991682ab958a1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/img/article-6.jpg HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/homepage_src/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: image/jpeg
content-length: 33427
server: cloudflare
last-modified: Fri, 24 Jan 2025 13:12:03 GMT
etag: "679391a3-8293"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
priority: u=4,i=?0
accept-ranges: bytes
cf-ray: 918b5baa2de70b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET kooseboutoojooy.com/homepage_src/img/article-3.jpg

188.114.96.1

200 OK

42 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/img/article-3.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x520, components 3
Size
42 kB (41911 bytes)
Hash
e3abd1a7a2ad93ef9dda40fc910d476d
e259e6be22f047bd74ba89013791ae33d459eace
b6994e570fbd5567c117b8e911faab4af35f5ba3223d5be37aca8d795d0d55af

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/img/article-3.jpg HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/homepage_src/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: image/jpeg
content-length: 41911
last-modified: Fri, 24 Jan 2025 13:12:03 GMT
etag: "679391a3-a3b7"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NJXBTobseN4eTqIpQXC0cI7YL0IvkVKYfKLcRsi1riES8hJjP0JdO4%2FBmSow0y0SoEGnEH5%2BgMSgDGRdcMT5GvAaPCaHTV7dTQWQiYhkTMGUSUIcO3vLVzAxVU3I9f9BPwvqTSuU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 918b5baa1dd60b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7321&min_rtt=1043&rtt_var=5455&sent=314&recv=32&lost=0&retrans=0&sent_bytes=341903&recv_bytes=5719&delivery_rate=6758645&cwnd=108000&unsent_bytes=0&cid=db975211fba4d1b7&ts=555&x=1", cfExtPri, cfHdrFlush;dur=0

GET kooseboutoojooy.com/homepage_src/img/article-8.jpg

188.114.96.1

200 OK

38 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/img/article-8.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 640x427, components 3
Size
38 kB (37702 bytes)
Hash
b4febfedfd9f0c2d39785452af9b6185
a5c10f29b2890c8d35ec1abc8bd0f2a996aa555c
88cef4740629305fb88a135d08c92a2d60e2c1415406c312f7ef9e69fe37a817

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/img/article-8.jpg HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/homepage_src/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: image/jpeg
content-length: 37702
last-modified: Fri, 24 Jan 2025 13:12:03 GMT
etag: "679391a3-9346"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PEh6bEK7oV7B8gVYP9EK758y8hydv5EZ7EcMlwOYvzLFxfWVUAxplpl7YPo%2FLMTWcD9VU3JokMwiRbKOkDwllkhSYhsdfrWQFyIJRq7QFIVo8YyHvs015oOyIeYeZA1mUmyedpwv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 918b5baa3df20b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6775&min_rtt=1043&rtt_var=5183&sent=351&recv=33&lost=0&retrans=0&sent_bytes=385553&recv_bytes=5764&delivery_rate=10878586&cwnd=108000&unsent_bytes=0&cid=db975211fba4d1b7&ts=559&x=1", cfExtPri, cfHdrFlush;dur=0

GET kooseboutoojooy.com/homepage_src/img/article-5.jpg

188.114.96.1

200 OK

76 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/img/article-5.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 960x709, components 3
Size
76 kB (76000 bytes)
Hash
707e3f3e4dd4836dadef559296000092
8b22865dd8fd932f4cf8cd496944cef3500f0ad3
13f89f15aa375e298c3cd1dd0f9bf8fad133bcbb6796be87042439b4f20295c5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/img/article-5.jpg HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/homepage_src/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: image/jpeg
content-length: 76000
last-modified: Fri, 24 Jan 2025 13:12:03 GMT
etag: "679391a3-128e0"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9asXnHsp6kQbgty68OpJf3oBBiBZx9h0Mxq%2B0P49gxTkNc6snIsbSMZTx%2BrUWQxFF9BrE2k8VIJrepD2RAglheKW6ad83hxg1DftNahg8xsEy1cqzoAfEhw%2FTGSp6sAOEoSYoDH2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 918b5baa2ddf0b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6314&min_rtt=1043&rtt_var=4808&sent=385&recv=34&lost=0&retrans=0&sent_bytes=424901&recv_bytes=5810&delivery_rate=1744011&cwnd=119100&unsent_bytes=0&cid=db975211fba4d1b7&ts=580&x=1", cfExtPri, cfHdrFlush;dur=0

GET kooseboutoojooy.com/homepage_src/img/article-7.jpg

188.114.96.1

200 OK

48 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/img/article-7.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 800x534, components 3
Size
48 kB (48088 bytes)
Hash
85b44fb2c8dd6fb9619217baaddb6473
cf3f9e9f8ef7a305036964e37c2a9d3703e87d45
509140b173def89bfdeaa8bff64275151429fadc67640ec00ef357f9fca82b1d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/img/article-7.jpg HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/homepage_src/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: image/jpeg
content-length: 48088
last-modified: Fri, 24 Jan 2025 13:12:03 GMT
etag: "679391a3-bbd8"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B98eoFfhdTXhnGoMPDb2cLZip04Q30WDm18LB2KlBMpX4EeM2RhXTWLtSM7aD6W4D8U9Sa8yi0X4mkkge8v2mmzuy9wLPpJd7eRIIZ3wG56dXrMgULg9g0VLxur2HDsp17%2B9feNV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 918b5baa2def0b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6314&min_rtt=1043&rtt_var=4808&sent=387&recv=34&lost=0&retrans=0&sent_bytes=426753&recv_bytes=5810&delivery_rate=1744011&cwnd=119100&unsent_bytes=0&cid=db975211fba4d1b7&ts=588&x=1", cfExtPri, cfHdrFlush;dur=6

GET kooseboutoojooy.com/favicon.ico

188.114.96.1

204 No Content

0 B

URL GET HTTP/3
kooseboutoojooy.com/favicon.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Thu, 27 Feb 2025 21:44:46 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: HIT
age: 5085
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZG7ke2tHBMjp3JI1IulL06P3Q9mU228SbXGO%2BkpCWr9%2BCnf53HnlBfCzu84GhQvYv2Nla4ZGOxOkHgRUXrp3opqCPWN5h%2BeSozgHk1UK%2BYio8qcooeIwbebd%2FSzk3UUDzDPOvbga"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 918b5bab7f460b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7583&min_rtt=1043&rtt_var=5848&sent=494&recv=38&lost=0&retrans=0&sent_bytes=553475&recv_bytes=6233&delivery_rate=3844410&cwnd=229500&unsent_bytes=0&cid=db975211fba4d1b7&ts=688&x=1", cfExtPri, cfHdrFlush;dur=0

GET kooseboutoojooy.com/homepage_src/js/index.js

188.114.96.1

200 OK

11 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/js/index.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
ASCII text
Size
11 kB (11132 bytes)
Hash
049d83d7668e2a78b7c6f889c0c632ae
9164c0af0f4a8b18f95e4abe0cf7ac864291f7fc
c49854594971d9c303514c276b8e02821282f057c23c3014e18a2468d5277467

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/js/index.js HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: application/javascript
server: cloudflare
vary: Accept-Encoding
last-modified: Mon, 27 Jan 2025 11:59:12 GMT
etag: W/"67977510-2b1"
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: br
cache-control: max-age=1800
cf-cache-status: MISS
priority: u=3,i=?0
cf-ray: 918b5ba92cc10b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET kooseboutoojooy.com/homepage_src/img/article-1.jpg

188.114.96.1

200 OK

43 kB

URL GET HTTP/3
kooseboutoojooy.com/homepage_src/img/article-1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://kooseboutoojooy.com/
Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 800x534, components 3
Size
43 kB (42648 bytes)
Hash
2abe4d8d6a98cbd01dfc9a06d3477fb6
322783d818c5dc170dee4238f7edf099c0906930
312b4b8d3f2737f3fb76fb31602ba9e5e78b83959a33fc4d036266eba2d28f7f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /homepage_src/img/article-1.jpg HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://kooseboutoojooy.com/homepage_src/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 27 Feb 2025 21:44:46 GMT
content-type: image/jpeg
content-length: 42648
last-modified: Fri, 24 Jan 2025 13:12:03 GMT
etag: "679391a3-a698"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XL00oM1qPKObJbWHHufYD0mFK50%2FWSFw5s9gt1%2BvkBW2IDlu4fIlDnQ%2F0YA2pXtlcNe9uKccnQsYZXwldYfH2M6%2FunEzgDppTol533jHegoUsqj0DVfWoihUHXYScMTLp%2FslTrko"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 918b5ba9fdb00b51-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7557&min_rtt=1043&rtt_var=6226&sent=177&recv=30&lost=0&retrans=0&sent_bytes=180763&recv_bytes=5627&delivery_rate=3330361&cwnd=67200&unsent_bytes=0&cid=db975211fba4d1b7&ts=527&x=1", cfExtPri, cfHdrFlush;dur=0

GET kooseboutoojooy.com/

188.114.96.1

200 OK

9.2 kB

URL User Request GET HTTP/2
kooseboutoojooy.com/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectkooseboutoojooy.com
Fingerprint69:45:C0:DF:61:3E:01:A2:D4:B3:46:05:6B:61:71:F8:D4:94:51:1C
ValidityTue, 07 Jan 2025 16:31:13 GMT - Mon, 07 Apr 2025 17:29:46 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9608), with no line terminators
Size
9.2 kB (9198 bytes)
Hash
3c1415aec92c81676836368bc87d6434
4f39e8391ffb0da646f7b5e7e499ab50da5ebfe1
e1f7598e18f88ed0eb66ae20f7d1f7aff3877c7b22f0bcb08a824b5929269255

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: kooseboutoojooy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Feb 2025 21:44:45 GMT
content-type: text/html
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e50%2BRwB9SmdjGIZBcw4Wis%2FOUIDpq9riNeh6G%2B9cyP%2FY0TAWJAXEUTEvTqaXe2Z4USZ1nHGsr15oLjNiZBuESFxPq5l0fxnqMG8j3m3WmOWA40t2%2BAg1bK3G2Gb2V45rMnqJKDuh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 918b5ba6dc265699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5534&min_rtt=437&rtt_var=10172&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3224&recv_bytes=1128&delivery_rate=7180165&cwnd=254&unsent_bytes=0&cid=f1a364b541d1fc60&ts=94&x=0"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (16)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers