Report - s7.athenacdn03.site/cdn/down/b0e35036a86606392a63775ffd25e9e8/Video/720p/720p

Report Overview

Visitedpublic

2024-07-28 12:07:29

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-07-27 18:12:19	2.0 kB	5.3 kB	23.36.77.32
s7.athenacdn03.site	unknown	unknown	No data	No data	1.0 kB	711 kB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-07-28	medium	athenacdn03.site	Sinkholed
2024-07-28	medium	athenacdn03.site	Sinkholed

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (8)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL

r10.o.lencr.org/

IP / ASN

23.36.77.32

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-07-27

Last Seen2024-08-19

Times Seen27742

Size504 B (504 bytes)

MD51923cde36555abe065c52a358521a6f5

SHA11cfff065ff7d9706aa7142cc99855769a50f642e

SHA2569bdc1a9c47d76dc96134b04996050573491d15a2d8b6be4157791b9d6f0766c9

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "9BDC1A9C47D76DC96134B04996050573491D15A2D8B6BE4157791B9D6F0766C9"
Last-Modified: Sat, 27 Jul 2024 06:56:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6522
Expires: Sun, 28 Jul 2024 13:55:43 GMT
Date: Sun, 28 Jul 2024 12:07:01 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL

r10.o.lencr.org/

IP / ASN

23.36.77.32

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-07-27

Last Seen2024-08-19

Times Seen18604

Size504 B (504 bytes)

MD5b8e31d15afcf09f5bb82859001dd8709

SHA19cbcde3c0dfe955fa6116416d94a7a18746b50c7

SHA256552c092e8f81ebcd4575f45f58dbbc32e2813e6e6a988adf173122916658ae47

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "552C092E8F81EBCD4575F45F58DBBC32E2813E6E6A988ADF173122916658AE47"
Last-Modified: Sat, 27 Jul 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6490
Expires: Sun, 28 Jul 2024 13:55:12 GMT
Date: Sun, 28 Jul 2024 12:07:02 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL

r10.o.lencr.org/

IP / ASN

23.36.77.32

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-07-27

Last Seen2024-08-19

Times Seen27365

Size504 B (504 bytes)

MD5182b9c01b864c7d116c3fc28cbb58d6e

SHA1644efdd1cd6ee4e5d5ec976387b3dbf47ed51dc1

SHA2565d2cc1a96f886c04483d570f2fba83b9b430796d2faf9d6d115cca98bc6b713f

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D2CC1A96F886C04483D570F2FBA83B9B430796D2FAF9D6D115CCA98BC6B713F"
Last-Modified: Sat, 27 Jul 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12572
Expires: Sun, 28 Jul 2024 15:36:34 GMT
Date: Sun, 28 Jul 2024 12:07:02 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL

r10.o.lencr.org/

IP / ASN

23.36.77.32

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-07-27

Last Seen2024-08-19

Times Seen17962

Size504 B (504 bytes)

MD581824d7fe3586f45f4b9de236d1c9ea6

SHA15027c81d077b62345c80560922f2d6cd51c42efb

SHA2568fdc10e4c15083f0f547cf016657e65e77beb95ca9ed87c0aa820ae2054a9a99

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "8FDC10E4C15083F0F547CF016657E65E77BEB95CA9ED87C0AA820AE2054A9A99"
Last-Modified: Sat, 27 Jul 2024 06:57:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16596
Expires: Sun, 28 Jul 2024 16:43:39 GMT
Date: Sun, 28 Jul 2024 12:07:03 GMT
Connection: keep-alive

r10.o.lencr.org/

23.33.119.27

504 B

URL

r10.o.lencr.org/

IP / ASN

23.33.119.27

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-07-27

Last Seen2024-08-19

Times Seen26985

Size504 B (504 bytes)

MD5fe86340c305817b173f7c0f3f59c795b

SHA1bae41a5fad9f6cf6e13281eb7d567d6103f292b3

SHA256310ca992570f568ed449d579727a026e44e75f4dd6a609897a3fba0bc7cbce57

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "310CA992570F568ED449D579727A026E44E75F4DD6A609897A3FBA0BC7CBCE57"
Last-Modified: Sat, 27 Jul 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5992
Expires: Sun, 28 Jul 2024 13:46:59 GMT
Date: Sun, 28 Jul 2024 12:07:07 GMT
Connection: keep-alive

r10.o.lencr.org/

23.33.119.27

504 B

URL

r10.o.lencr.org/

IP / ASN

23.33.119.27

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-07-27

Last Seen2024-08-19

Times Seen26985

Size504 B (504 bytes)

MD5fe86340c305817b173f7c0f3f59c795b

SHA1bae41a5fad9f6cf6e13281eb7d567d6103f292b3

SHA256310ca992570f568ed449d579727a026e44e75f4dd6a609897a3fba0bc7cbce57

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "310CA992570F568ED449D579727A026E44E75F4DD6A609897A3FBA0BC7CBCE57"
Last-Modified: Sat, 27 Jul 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5992
Expires: Sun, 28 Jul 2024 13:46:59 GMT
Date: Sun, 28 Jul 2024 12:07:07 GMT
Connection: keep-alive

GET s7.athenacdn03.site/cdn/down/b0e35036a86606392a63775ffd25e9e8/Video/720p/720p_332.html

188.114.96.1

200 OK

709 kB

URL

s7.athenacdn03.site/cdn/down/b0e35036a86606392a63775ffd25e9e8/Video/720p/720p_332.html

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typedata

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size709 kB (709136 bytes)

MD54cbcee77558465fa59b4716d01c343ce

SHA13595026cdf2479559fb66b503dae37d06c55d1b0

SHA256a524b106f9ffb288922b02410b649d84809d3a4d243c6f4510fb16d735b96ffc

Certificate Info

IssuerGoogle Trust Services

Subjectathenacdn03.site

Fingerprint0D:51:D0:BB:55:A3:57:C3:B7:4C:93:A9:15:BD:7A:9A:AC:37:AF:D4

ValidityMon, 08 Jul 2024 22:08:29 GMT - Sun, 06 Oct 2024 22:08:28 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn/down/b0e35036a86606392a63775ffd25e9e8/Video/720p/720p_332.html HTTP/1.1
Host: s7.athenacdn03.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 28 Jul 2024 12:07:02 GMT
content-type: text/html
last-modified: Fri, 19 Jul 2024 09:17:40 GMT
access-control-allow-origin: https://jeniusplay.com
cache-control: public, max-age=31536000, s-maxage=31536000
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jp7b%2FMk2ogAZ5o1vGu9ro6O6ZUzIqqc%2BCB5nF456cThR4j%2FfANG8tWkJckua9sBocoYlFAMXtjO1%2Bp7EEJXEgHXvvTQWlBuyKiENWiSlAxesOzW%2FO0yAZ7hGiGAElAOanDwX994P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8aa4bf2198bf56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET s7.athenacdn03.site/favicon.ico

188.114.96.1

404 Not Found

162 B

URL

s7.athenacdn03.site/favicon.ico

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://s7.athenacdn03.site/cdn/down/b0e35036a86606392a63775ffd25e9e8/Video/720p/720p_332.html

Resource Info

File typeHTML document, ASCII text, with no line terminators

First Seen2023-04-05

Last Seen2025-04-06

Times Seen4169

Size162 B (162 bytes)

MD542b7c03ebcddafdb2aa3078e3a9ceb69

SHA157570cf4712b36bce96f68228e6c72137c2156dd

SHA256a225bf8186e767cfb73fec2ac55678c083a3c2abd042bc1cf85f820bced5ec9f

Certificate Info

IssuerGoogle Trust Services

Subjectathenacdn03.site

Fingerprint0D:51:D0:BB:55:A3:57:C3:B7:4C:93:A9:15:BD:7A:9A:AC:37:AF:D4

ValidityMon, 08 Jul 2024 22:08:29 GMT - Sun, 06 Oct 2024 22:08:28 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: s7.athenacdn03.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s7.athenacdn03.site/cdn/down/b0e35036a86606392a63775ffd25e9e8/Video/720p/720p_332.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sun, 28 Jul 2024 12:07:18 GMT
content-type: text/html
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qOCYJ%2FYSteyQhU%2FZFQUU3pIpcX37ioaPE9twsVPLZ1epWmTo0Ux%2FvQU0JpvIfOX936hNfuIETKXXDfMeiGacsWdDIbdAHaqzxrkvaHlpyBIIEpsi%2BR9WJjkXoSuTv%2BVyPd6t60G6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8aa4bf874a85b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400