Report - www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id

Report Overview

Submitted URL
www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
IP
104.18.21.247
ASN
#13335 CLOUDFLARENET
Submitted
2023-05-25 01:52:32
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.sg-bigpromo-76.com	unknown	2019-12-03	2021-04-13	2023-05-21	18 kB	1.1 MB	104.18.20.247
static.cleverpush.com	16927	2016-03-30	2016-09-06	2023-05-24	440 B	84 kB	104.26.15.31

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-25	medium	www.sg-bigpromo-76.com/_static/_global/_supload/fonts/Roboto-Regular.woff2
2023-05-25	medium	www.sg-bigpromo-76.com/_static/_global/_supload/fonts/Roboto-Bold.woff2
2023-05-25	medium	www.sg-bigpromo-76.com/files/web/sponsor/_sponsoren/script_54.js
2023-05-25	medium	www.sg-bigpromo-76.com/_global/wingame/76/js/series.js?2023-05-24.4
2023-05-25	medium	www.sg-bigpromo-76.com/_static/_global/_supload/fonts/Roboto-Black.woff2
2023-05-25	medium	www.sg-bigpromo-76.com/dist/54/sweepstake.bundle.css?2023-05-24.4

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52	107 B	2023-05-25	2023-05-25
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-25 03:52:33 Last Seen2023-05-25 03:52:33 Times Seen1 Hash dc0be55048f1f713b51a69bbf42c2677 0804ca9cda9022af50bcf55430dd4a7b5e87701a cdb6391ddb2fed650295c55dcde50958d52266aeca355122d33fa0000b7f5869 Loading...

	www.sg-bigpromo-76.com/_global/js/framework/MooTools-Core-1.6.0-compressed.js?2023-05-24.4	90 kB	2023-03-07	2024-03-27
Pretty URL www.sg-bigpromo-76.com/_global/js/framework/MooTools-Core-1.6.0-compressed.js?2023-05-24.4 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:39 Last Seen2024-03-27 02:14:42 Times Seen143 Hash fcb1c635899fd1e781349468b8e5bb84 b9aa7889137b9f895effaf70bbf830346f205738 be0e66141e099739e90785e74a75e7aba4a5a3aa36c414e867c41f0ced9b0a36 Loading...

	www.sg-bigpromo-76.com/_global/js/moolidator.js?2023-05-24.4	43 kB	2023-03-26	2024-03-27
Pretty URL www.sg-bigpromo-76.com/_global/js/moolidator.js?2023-05-24.4 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 03:22:21 Last Seen2024-03-27 02:14:42 Times Seen45 Hash a131f4871c766979de3fbf14d4f9ec65 fdce24b970b85f3761c876172b77e616ed99b66f 24e0ac8ce9eb8ef0cd02bba6f386d0485621e331a1ed34549f5e5c0be86ecc53 Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52	33 B	2023-03-07	2024-03-27
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11:39 Last Seen2024-03-27 02:14:42 Times Seen142 Hash 09a035e29ea6d0dc014a73cc7d4dccc0 e75a3da7b29e61396d79e4db8a01d879e4807360 4238d27bdd7b3cea5b12b7125e126fe578db472e52bc31ae63bd7755bf645cbe Loading...

	www.sg-bigpromo-76.com/wingame/54/js/sweepstake.js?2023-05-24.4	1.9 kB	2023-03-07	2023-05-25
Pretty URL www.sg-bigpromo-76.com/wingame/54/js/sweepstake.js?2023-05-24.4 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:47 Last Seen2023-05-25 03:52:33 Times Seen3 Hash 3af660aa854149d38268fd4107e5630e d8b5c3f3e51d207dbb49231e1c1b0d4d5bdca172 fc9fe8b43930df80161ddc4dd095122a890e550c2de24c0bf49a1dc99b4b15a8 Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52	81 B	2023-03-07	2023-05-25
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:12:47 Last Seen2023-05-25 03:52:33 Times Seen5 Hash 31be75ac555981c2085cf7833bae15d5 d52ccb39ad96eea7590b86c00c4b8c5dfaf216a8 4a630fe0751d6fdecbbb3033be6d90347a68dd211adc2f0422fd24318652e18d Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52	45 B	2023-03-07	2023-05-25
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:12:47 Last Seen2023-05-25 03:52:33 Times Seen5 Hash 1eaeffe4295ad7614e64f6c3c76d1294 0ce6e021929a36145b9e4900ce7a52a65030942f d603621bc18b33e245127f971b81419978ea8ef96b9569c014ec9abca0afdf9f Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52	81 B	2023-03-07	2023-05-25
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:12:47 Last Seen2023-05-25 03:52:33 Times Seen5 Hash 279464648fa69c4d50c5562eb054d0bb a6e2fe6feaf87b11afdcf9b22f4e9d55a70c93df 35b678e5631ab4fce41f906d15fb2c3afa269bc7733449ad70f815f28fb96c52 Loading...

	www.sg-bigpromo-76.com/wingame/global/js/global.js?2023-05-24.4	495 B	2023-03-07	2023-05-25
Pretty URL www.sg-bigpromo-76.com/wingame/global/js/global.js?2023-05-24.4 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:47 Last Seen2023-05-25 19:33:01 Times Seen7 Hash 1b98ea3cb9f9d5125064031e36e955d6 ce14a655950d8464be8378ba4dcbb4bfa8477b59 41c9ca1210a14096e9078bd3d713390d07e5efb4bdd433f839dee3b0f0c25d61 Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52	1.1 kB	2023-03-07	2024-03-27
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11:39 Last Seen2024-03-27 02:14:42 Times Seen115 Hash f14a731981e984c04d08ef668d96d867 23f77eca9c9754fc400db2bfc242088b96ff4e1e 9e727340d7fb316cf59618a46bebc2e45ffcd55904bc1aceac7f4760e5827669 Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52	3.5 kB	2023-03-07	2024-01-09
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11:39 Last Seen2024-01-09 08:53:43 Times Seen24 Hash 60fc73f1db2b66a884b41438e678dcd1 e1151c0fd36699bfb79de308085af9c99d36e9c2 2e7406fa9d170fa4788a366eb21c16937c3fbcabce7b7dc0e24158a2a5f1cf87 Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52	2.9 kB	2023-03-07	2024-03-27
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11:40 Last Seen2024-03-27 02:14:42 Times Seen142 Hash 8f844149e7f42121069aecaac33b39d1 470fa242d44e1f8d909200723c8680024860483e 1b694f99a79e26d1ef7459a6759cb3e4a6a7e7b6e3f1e199dce185d71b955f5a Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52	355 B	2023-03-07	2023-05-25
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:12:47 Last Seen2023-05-25 03:52:33 Times Seen2 Hash a827eb41ae7fc85ffc83874bf45a182d 9f048bb863d388e949f497ae8f7b27cbd370e943 f0f4e6403e92b2c6f7639a1320db6a781da26f7341d9b8f805fdf6a7bf30883c Loading...

	www.sg-bigpromo-76.com/_global/wingame/76/js/series.js?2023-05-24.4	8.8 kB	2023-03-29	2023-11-11
Pretty URL www.sg-bigpromo-76.com/_global/wingame/76/js/series.js?2023-05-24.4 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:50:04 Last Seen2023-11-11 00:19:53 Times Seen17 Hash 69035ef786fcee02e33122778b88a12b bbe284ea62b9b72c1dba2332287d3bc175f24ff2 d03674e626537f4851c74eabfb08c48d6469d062e8ae82f15a47086009b83b27 Loading...

	www.sg-bigpromo-76.com/_global/js/moolidator_rules.js?2023-05-24.4	27 kB	2023-03-29	2023-05-27
Pretty URL www.sg-bigpromo-76.com/_global/js/moolidator_rules.js?2023-05-24.4 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:50:04 Last Seen2023-05-27 14:38:08 Times Seen25 Hash 1ba883e64d6f68e9aa1d7ac4040ca720 328dc3a89c69b05a9ca56e27d1481975cd8d165a 1882617f2c99db327c697b10b3f518413f3d7deb012b2ce823fc20af965cd29d Loading...

	www.sg-bigpromo-76.com/_global/js/scripts.js?2023-05-24.4	57 kB	2023-03-07	2023-05-28
Pretty URL www.sg-bigpromo-76.com/_global/js/scripts.js?2023-05-24.4 IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:39 Last Seen2023-05-28 17:27:42 Times Seen96 Hash 4eeb3045b35ec60ac8efdecc52a59c44 bc53e3f6d8cd4feb5bd63129e8cd27b6fef2b79d 0277c1245f8103772c6a4a0a401df99e3bf8de48b79d3fc7689106759b80070a Loading...

	www.sg-bigpromo-76.com/files/web/sponsor/_sponsoren/script_54.js	4.4 kB	2023-04-01	2023-05-25
Pretty URL www.sg-bigpromo-76.com/files/web/sponsor/_sponsoren/script_54.js IP 104.18.20.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:25:18 Last Seen2023-05-25 03:52:33 Times Seen5 Hash b5a1358135004b90e32e46ac7cbec795 f888c9a9bae167ab6d70b60be24ecf8641dd739d 253ff08d5957bed05ce4a1a9ee5d3974eaef63647c871e04417670dfbb9609b2 Loading...

	static.cleverpush.com/channel/loader/3zxL2HhGxKQQZYwsP.js	220 kB	2023-05-25	2023-05-25
Pretty URL static.cleverpush.com/channel/loader/3zxL2HhGxKQQZYwsP.js IP 104.26.15.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-25 03:52:33 Last Seen2023-05-25 03:52:33 Times Seen2 Hash 6a089334cac45f60f366758400d2aaf9 72d6f556bc0d616256e79cd8c224800b4fda8d10 340eb78180e7a389f33f3a7e6dcb663da2b5745e77207ae45251bf2abb260a5b Loading...

HTTP Transactions (31)

URL IP Response Size

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_542_1450867072.png

104.18.20.247

200 OK

1.3 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_542_1450867072.png
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 100 x 30, 8-bit gray+alpha, non-interlaced\012- data
Size
1.3 kB (1302 bytes)
Hash
f482011337a1fd30d43c4c16fd6fae99
42b84caf4bee84f5e6bc2799d47ed421c0afa5ee
1491ba98acf990484c8a649bfb0f7bc6fe24c676463c76e93d418ca24ce145a3

HTTP Headers

GET /files/web/sponsor/_logos/logo1_542_1450867072.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: image/png
content-length: 1302
last-modified: Wed, 23 Dec 2015 10:37:53 GMT
etag: "567a7981-516"
x-map-context: sg
x-served-by: d-04
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234b592f1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/fonts/css/Roboto.css

104.18.20.247

200 OK

1.4 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/fonts/css/Roboto.css
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
gzip compressed data, from Unix\012- data
Size
1.4 kB (1404 bytes)
Hash
27d9f72a1ab5e6faf4497007a631f364
348d3e08f94210041c12e3bc93ae1f97303d03cf
59ec2a88ab1192cb9839361f4b2138145311e33e185b5a0f9384d8330194497c

HTTP Headers

GET /_static/_global/_supload/fonts/css/Roboto.css HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
etag: W/"724952885"
last-modified: Fri, 02 Oct 2020 11:00:33 GMT
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cca2349d8a51c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_229_1378106311.jpg

104.18.20.247

200 OK

1.2 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_229_1378106311.jpg
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 100 x 30, 8-bit gray+alpha, non-interlaced\012- data
Size
1.2 kB (1194 bytes)
Hash
138269e0d78814c79c96bde6916e21a1
b044fd802f0e648fd22c19bae34a9dcf49a91c56
a7d53245b9c0e48179a6c4a7bc87df311e2fb325ff7c9e018d2e33d5dc518f8c

HTTP Headers

GET /files/web/sponsor/_logos/logo1_229_1378106311.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: image/jpeg
content-length: 1194
last-modified: Mon, 02 Sep 2013 07:18:32 GMT
etag: "52243bc8-4aa"
x-map-context: sg
x-served-by: d-01
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234b592e1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_189_1455776285.jpg

104.18.20.247

200 OK

23 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_189_1455776285.jpg
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 100 x 30, 8-bit gray+alpha, non-interlaced\012- data
Size
23 kB (22881 bytes)
Hash
38097d3809b2db32754adcf0556aa5e9
59276af6681a42aa27a44a5debbb696d21eb086f
a7b6cb184cbefadfed80369fd650d6bb415e7cdab7f4fb42ad929a208295ce5d

HTTP Headers

GET /files/web/sponsor/_logos/logo1_189_1455776285.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: image/jpeg
content-length: 22881
last-modified: Thu, 18 Feb 2016 06:18:07 GMT
etag: "56c5621f-5961"
x-map-context: sg
x-served-by: d-02
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234b492c1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_webupload/guaranteed_seal.png

104.18.20.247

200 OK

23 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_webupload/guaranteed_seal.png
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 135 x 104, 8-bit/color RGBA, non-interlaced\012- data
Size
23 kB (23076 bytes)
Hash
12d948473a58ab8cc7e23fdf127cc984
938271ff2535daa7f349db7c24b23eb9b823331c
cd1a889278ea9c1961ecf5314485ccb09d2091a1e70a38a7bb9de49e3f6c6c68

HTTP Headers

GET /_static/_webupload/guaranteed_seal.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: image/png
content-length: 23076
etag: "3836831257"
last-modified: Fri, 16 Apr 2021 07:27:53 GMT
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234b69341c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGSheinB01.jpg

104.18.20.247

200 OK

40 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGSheinB01.jpg
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x300, components 3\012- data
Size
40 kB (40320 bytes)
Hash
91582727e2984837cb9222628bf8b6ee
8aba82ae52ccbe2fac1e4c83ce276c3905c47fea
0a917ee82f89075696ef75e59c225a3e16f886f72501bbf053238b8ffd2c47d3

HTTP Headers

GET /_static/_global/_supload/ctn/imgHeroSGSheinB01.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: image/jpeg
content-length: 40320
etag: "1700613324"
last-modified: Wed, 07 Jul 2021 07:47:15 GMT
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234b793b1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_webupload/imggcsheinsg.png

104.18.20.247

200 OK

18 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_webupload/imggcsheinsg.png
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 130 x 102, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (17617 bytes)
Hash
b272f8405f5fbe560c23ae0a34401d7d
5e3631e043a0587fbeee76de166ea39aa7537039
bac5380a59fd9b9551550cc8dbece8843748b67978cc755f6a07b45cc6add9b6

HTTP Headers

GET /_static/_webupload/imggcsheinsg.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: image/png
content-length: 17617
etag: "1117775954"
last-modified: Wed, 07 Jul 2021 07:26:28 GMT
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234b793a1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGShein01.jpg

104.18.20.247

200 OK

44 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGShein01.jpg
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 622x415, components 3\012- data
Size
44 kB (44476 bytes)
Hash
90dc0124edbfd7d3201bfe6f41b922ba
7956c89edd10d7a75fe4244077bd73b7b190c51b
e4470517a1b645135cd22970beecfa2dc20c238fee8a8c8100c5e80f50a8ebe4

HTTP Headers

GET /_static/_global/_supload/ctn/imgHeroSGShein01.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: image/jpeg
content-length: 44476
etag: "3565945055"
last-modified: Wed, 07 Jul 2021 07:47:13 GMT
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234b59321c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGSheinB04.jpg

104.18.20.247

200 OK

30 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGSheinB04.jpg
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x300, components 3\012- data
Size
30 kB (30406 bytes)
Hash
bf325c7c70024d918a44a0c291448c79
f79a66759e264a65dbfce86045aeb8a9c08eda57
1e4ffbf1773eaa2af4a9f59342d4565c4c5e5a9edf2d5253cc9d5d559b6945dc

HTTP Headers

GET /_static/_global/_supload/ctn/imgHeroSGSheinB04.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: image/jpeg
content-length: 30406
etag: "531058672"
last-modified: Wed, 07 Jul 2021 07:47:16 GMT
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234bc9581c02-OSL
X-Firefox-Spdy: h2

static.cleverpush.com/channel/loader/3zxL2HhGxKQQZYwsP.js

104.26.15.31

200 OK

83 kB

URL GET HTTP/2
static.cleverpush.com/channel/loader/3zxL2HhGxKQQZYwsP.js
IP
104.26.15.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectcleverpush.com
Fingerprint3E:DA:9F:E1:93:1E:91:5C:83:38:F4:83:66:E4:7F:43:A9:57:1D:BE
ValidityFri, 12 May 2023 02:45:12 GMT - Thu, 10 Aug 2023 02:45:11 GMT

File type
ASCII text, with very long lines (65491)
Size
83 kB (82934 bytes)
Hash
6a089334cac45f60f366758400d2aaf9
72d6f556bc0d616256e79cd8c224800b4fda8d10
340eb78180e7a389f33f3a7e6dcb663da2b5745e77207ae45251bf2abb260a5b

HTTP Headers

GET /channel/loader/3zxL2HhGxKQQZYwsP.js HTTP/1.1
Host: static.cleverpush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: application/javascript
x-amz-id-2: 2FDg3VF+kPBH0P6ZKepUQHwNvnz1KBLbq/ikQBs0RteybUD0d4yitIXRikw+Q6A+1YeS2RvNPIk=
x-amz-request-id: K8729YKZTKJC7SSP
last-modified: Thu, 25 May 2023 00:42:34 GMT
etag: W/"6a089334cac45f60f366758400d2aaf9"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=21600
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AdGzbJM1thNvr7GKr8X%2BrLMG3TABbJpXx5Gq7LEe75aNzfztoaIiaFWM7JRLymhkCfL8BA77QebjUXLF0pN8EuumDMvFb%2FODIB6ULCeioGoNGV9kALO3iwR6GOlMGpgUwsqoTHoG1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234a08b6b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGSheinB03.jpg

104.18.20.247

200 OK

50 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGSheinB03.jpg
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x300, components 3\012- data
Size
50 kB (49560 bytes)
Hash
4b6eb459142df4118c8a1bfe0ee11087
e604050764b9bce9eaaf4048eb465e6debce345e
afb50ea4362f5c07bd82f3e1de1a7da2e42ec988db6dcc4b1b3d9d2386b4d9d8

HTTP Headers

GET /_static/_global/_supload/ctn/imgHeroSGSheinB03.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: image/jpeg
content-length: 49560
etag: "4114884595"
last-modified: Wed, 07 Jul 2021 07:47:15 GMT
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234bc9561c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/cgi-bin/bgModelSHero.jpg

104.18.20.247

404 Not Found

66 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/cgi-bin/bgModelSHero.jpg
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
gzip compressed data, from Unix\012- data
Size
66 kB (66273 bytes)
Hash
e606a6400a5286c4fb0a87eca9e567f9
b856cdf21a3d763ad74e952fee8d40a4beb07630
73d03d0fa6bed675dc1103af5e2218ffae23d7a4bce8ba2bb608df5f04e77cb7

HTTP Headers

GET /cgi-bin/bgModelSHero.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Thu, 25 May 2023 01:52:14 GMT
content-type: text/html
cf-cache-status: MISS
expires: Thu, 25 May 2023 05:52:14 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234b69381c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/fonts/Roboto-Regular.woff2

104.18.20.247

200 OK

66 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/fonts/Roboto-Regular.woff2
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
Web Open Font Format (Version 2), TrueType, length 65916, version 1.0\012- data
Size
66 kB (65916 bytes)
Hash
9feb0110b6dff9ee2b9ebd17f7a1aee6
90bbe308a02d7cda492e3beb1a6091809b8f35c8
8cef08634dc57d6519717c5a99a9e502bdc96586fe64770520a4820b0b089920

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /_static/_global/_supload/fonts/Roboto-Regular.woff2 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/_static/_global/_supload/fonts/css/Roboto.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: font/woff2
content-length: 65916
etag: "3222573717"
last-modified: Thu, 24 Sep 2020 13:54:40 GMT
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234bf9661c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/fonts/Roboto-Bold.woff2

104.18.20.247

200 OK

66 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/fonts/Roboto-Bold.woff2
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
Web Open Font Format (Version 2), TrueType, length 65972, version 1.0\012- data
Size
66 kB (65972 bytes)
Hash
f3a02e2578bee50e620e515912278bc9
168e9a9e4690ec3437a6a3087dd2f76fadc47888
4d7dd6e02d849e181e51db84d9d230d369b8ce7412dbcee9d7d1d19ad8a16741

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /_static/_global/_supload/fonts/Roboto-Bold.woff2 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/_static/_global/_supload/fonts/css/Roboto.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: font/woff2
content-length: 65972
etag: "495413912"
last-modified: Thu, 24 Sep 2020 13:54:40 GMT
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234bf9671c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/favicon.ico

104.18.20.247

200 OK

32 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/favicon.ico
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
gzip compressed data, from Unix\012- data
Size
32 kB (31512 bytes)
Hash
c9277c77d49d876290b7bbc5619159b9
b632b674b49626aa8434df440066d1cc13dfda26
21c6fe2ce2078d5cfb90d3df04054a2bc3222e6b1ee378e4e92644cb2ea949d3

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: image/x-icon
last-modified: Mon, 04 May 2020 09:08:58 GMT
etag: W/"5eafdbaa-10be"
x-map-context: sg
x-served-by: d-04
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234cf9a51c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGShein03.jpg

104.18.20.247

200 OK

85 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGShein03.jpg
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 622x415, components 3\012- data
Size
85 kB (84824 bytes)
Hash
bd233487c1520279542a0cc42f53d46e
2daf6446f9a1001e157955da8f3611f032b56256
1e4c665df980b1623a6c19537344fa35356129372bad277f2cd7bbd6ae2e3e2e

HTTP Headers

GET /_static/_global/_supload/ctn/imgHeroSGShein03.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:21 GMT
content-type: image/jpeg
content-length: 84824
etag: "521884985"
last-modified: Wed, 07 Jul 2021 07:47:14 GMT
expires: Fri, 26 May 2023 01:52:21 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca237668ad1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGShein04.jpg

104.18.20.247

200 OK

49 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGShein04.jpg
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 622x415, components 3\012- data
Size
49 kB (48918 bytes)
Hash
dbbc68a1dc1de5dee346e58fde3de575
9311930658bef64c5c357139dad732b617c85dbf
76805a3cc12c049433474fd528f47a278670756fc5d8884259a30b7612d5ca0d

HTTP Headers

GET /_static/_global/_supload/ctn/imgHeroSGShein04.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:27 GMT
content-type: image/jpeg
content-length: 48918
etag: "1696233246"
last-modified: Wed, 07 Jul 2021 07:47:14 GMT
expires: Fri, 26 May 2023 01:52:27 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca2398da8d1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52

104.18.20.247

200 OK

30 kB

URL User Request GET HTTP/2
www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type

Size
30 kB (29999 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: text/html;charset=UTF-8
x-firstpage: 1
x-page: pregame
x-map-context: sg
x-served-by: d-01
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7cca23454f2e1c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGShein02.jpg

104.18.20.247

200 OK

31 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGShein02.jpg
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 622x415, components 3\012- data
Size
31 kB (31445 bytes)
Hash
d9916ee51537443315fdd397275b9784
ee10daa74684859baa6f31a4bb973c2ad7b63218
d8c0e907e110e2256bfe3df0648fd36d0b7ed0dc9c253443f978de6a73ebe9ae

HTTP Headers

GET /_static/_global/_supload/ctn/imgHeroSGShein02.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:16 GMT
content-type: image/jpeg
content-length: 31445
etag: "1654741651"
last-modified: Wed, 07 Jul 2021 07:47:13 GMT
expires: Fri, 26 May 2023 01:52:16 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca2354dc5e1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_sponsoren/script_54.js

104.18.20.247

200 OK

4.4 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_sponsoren/script_54.js
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text, with very long lines (4768), with no line terminators
Size
4.4 kB (4365 bytes)
Hash
147d01a4cc9f7a49c4a1ec4dc02ed9d7
2af661b6c10a99893ab6c5f4e87005c2370d0c9a
1dfc21a8006600a0d98c0c8fea19cc7450fc20ba2c978437a662d6a84aa4f2ae

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /files/web/sponsor/_sponsoren/script_54.js HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 02 May 2023 01:57:25 GMT
etag: W/"64506e05-110d"
x-map-context: sg
x-served-by: d-02
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cca2349d8a61c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_global/js/framework/MooTools-Core-1.6.0-compressed.js?2023-05-24.4

104.18.20.247

200 OK

90 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_global/js/framework/MooTools-Core-1.6.0-compressed.js?2023-05-24.4
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text, with very long lines (32043)
Size
90 kB (89700 bytes)
Hash
fcb1c635899fd1e781349468b8e5bb84
b9aa7889137b9f895effaf70bbf830346f205738
be0e66141e099739e90785e74a75e7aba4a5a3aa36c414e867c41f0ced9b0a36

HTTP Headers

GET /_global/js/framework/MooTools-Core-1.6.0-compressed.js?2023-05-24.4 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 10 Nov 2017 11:48:17 GMT
etag: W/"5a059201-15e64"
x-map-context: sg
x-served-by: d-04
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cca2349d89d1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/wingame/global/js/global.js?2023-05-24.4

104.18.20.247

200 OK

495 B

URL GET HTTP/2
www.sg-bigpromo-76.com/wingame/global/js/global.js?2023-05-24.4
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text, with very long lines (533), with no line terminators
Size
495 B (495 bytes)
Hash
a5d475095dc12ed0ca5748a67548b829
7fcdb8af086e891ed794d2a5dc7976bfb50a3030
fbc9fb6da0227c2018070be166ff9453327342f5d5e0bf6d82b2df778dc72bff

HTTP Headers

GET /wingame/global/js/global.js?2023-05-24.4 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: application/javascript
last-modified: Tue, 19 May 2020 09:57:38 GMT
etag: W/"5ec3ad92-1ef"
x-map-context: sg
x-served-by: d-03
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca2349d8a21c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_global/js/moolidator.js?2023-05-24.4

104.18.20.247

200 OK

43 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_global/js/moolidator.js?2023-05-24.4
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text
Size
43 kB (43114 bytes)
Hash
a131f4871c766979de3fbf14d4f9ec65
fdce24b970b85f3761c876172b77e616ed99b66f
24e0ac8ce9eb8ef0cd02bba6f386d0485621e331a1ed34549f5e5c0be86ecc53

HTTP Headers

GET /_global/js/moolidator.js?2023-05-24.4 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 09 Mar 2023 10:32:23 GMT
etag: W/"6409b5b7-a86a"
x-map-context: sg
x-served-by: d-04
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cca2349d89e1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_global/wingame/76/js/series.js?2023-05-24.4

104.18.20.247

200 OK

8.8 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_global/wingame/76/js/series.js?2023-05-24.4
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text, with very long lines (9955), with no line terminators
Size
8.8 kB (8758 bytes)
Hash
ca6a2743f06808a183543df358891516
3ba63103b0771cd184c53db69c4884758e0f05f7
57dcf9801f77f7c48cbb1bc40553866d96cb4ea95dea887709b930cd3a8771cb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /_global/wingame/76/js/series.js?2023-05-24.4 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 28 Mar 2023 12:11:56 GMT
etag: W/"6422d98c-2236"
x-map-context: sg
x-served-by: d-04
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cca2349d8a31c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/fonts/Roboto-Black.woff2

104.18.20.247

200 OK

66 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/fonts/Roboto-Black.woff2
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
Web Open Font Format (Version 2), TrueType, length 66148, version 1.0\012- data
Size
66 kB (66148 bytes)
Hash
72f6fd218b59c42e804cb543cfc53598
2c4388751874f5aa482c964d7d07fbebe2fcc3b9
026d836bb00b979293032a9221da04e71faf87f79f48b6bb92e3f9935f5315bc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /_static/_global/_supload/fonts/Roboto-Black.woff2 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/_static/_global/_supload/fonts/css/Roboto.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: font/woff2
content-length: 66148
etag: "1593759193"
last-modified: Thu, 24 Sep 2020 13:54:39 GMT
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234be9601c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_187_1465355333.png

104.18.20.247

200 OK

997 B

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_187_1465355333.png
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 100 x 30, 8-bit gray+alpha, non-interlaced\012- data
Size
997 B (997 bytes)
Hash
3a3be303f1052088f347199cbe63e9c4
3614cecaf00d641640c11111514dd9aeccab7b7e
9009291e97571a56c260b0b17998102a74f35b6d7d7f0377ab62441b78861b99

HTTP Headers

GET /files/web/sponsor/_logos/logo1_187_1465355333.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: image/png
content-length: 997
last-modified: Wed, 08 Jun 2016 03:08:53 GMT
etag: "57578c45-3e5"
x-map-context: sg
x-served-by: d-02
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234b492a1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_global/js/scripts.js?2023-05-24.4

104.18.20.247

200 OK

57 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_global/js/scripts.js?2023-05-24.4
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text
Size
57 kB (56730 bytes)
Hash
4eeb3045b35ec60ac8efdecc52a59c44
bc53e3f6d8cd4feb5bd63129e8cd27b6fef2b79d
0277c1245f8103772c6a4a0a401df99e3bf8de48b79d3fc7689106759b80070a

HTTP Headers

GET /_global/js/scripts.js?2023-05-24.4 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 21 Jul 2022 07:31:48 GMT
etag: W/"62d900e4-dd9a"
x-map-context: sg
x-served-by: d-04
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cca2349d8a01c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/dist/54/sweepstake.bundle.css?2023-05-24.4

104.18.20.247

200 OK

108 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/dist/54/sweepstake.bundle.css?2023-05-24.4
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type

Size
108 kB (108164 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dist/54/sweepstake.bundle.css?2023-05-24.4 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 28 Mar 2023 09:35:05 GMT
etag: W/"6422b4c9-1a684"
x-map-context: sg
x-served-by: d-03
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cca2349d89c1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_global/js/moolidator_rules.js?2023-05-24.4

104.18.20.247

200 OK

27 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_global/js/moolidator_rules.js?2023-05-24.4
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type

Size
27 kB (26754 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_global/js/moolidator_rules.js?2023-05-24.4 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 27 Mar 2023 13:00:00 GMT
etag: W/"64219350-6882"
x-map-context: sg
x-served-by: d-03
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cca2349d89f1c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGSheinB02.jpg

104.18.20.247

200 OK

27 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/ctn/imgHeroSGSheinB02.jpg
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x300, components 3\012- data
Size
27 kB (26665 bytes)
Hash
49deab36bf3a39c617df905144f6c20f
96d517a9491e5885d57da9f12b07b8aae164753b
fce828c01591be8e7d3e76fb76cffe7d02300a800d29167e6bc5d259501961cd

HTTP Headers

GET /_static/_global/_supload/ctn/imgHeroSGSheinB02.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: image/jpeg
content-length: 26665
etag: "1382793880"
last-modified: Wed, 07 Jul 2021 07:47:15 GMT
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cca234bc9571c02-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/wingame/54/js/sweepstake.js?2023-05-24.4

104.18.20.247

200 OK

1.9 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/wingame/54/js/sweepstake.js?2023-05-24.4
IP
104.18.20.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text, with very long lines (2287), with no line terminators
Size
1.9 kB (1940 bytes)
Hash
8005c04be4bf6f176daaef8584cefe0c
5101ecfd9770e5ab67722a767f7a7baa7d0646a2
8dc69b3df5b536114136455b797448026262b6b6df947e5fc6bc62eb3eea937b

HTTP Headers

GET /wingame/54/js/sweepstake.js?2023-05-24.4 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=54&freetest_pk=1234&sub_id=3518-15914&sub_id_postback=102be1c129a070c2c1d66df5c69b52
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 25 May 2023 01:52:14 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 08 Jun 2020 08:52:50 GMT
etag: W/"5eddfc62-794"
x-map-context: sg
x-served-by: d-04
expires: Fri, 26 May 2023 01:52:14 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cca2349d8a41c02-OSL
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML