{"report_id":"5a6e7c65-c895-4898-b39c-c6ca16f1ffc0","version":6,"status":"done","tags":["phishing","microsoft","outlook"],"date":"2024-07-10T12:02:06Z","url":{"schema":"http","addr":"inodive.us/wp-content/css/ZXhlbXBsZUBleGVtcGxlLmNvbQ==","fqdn":"inodive.us","domain":"inodive.us","tld":"us"},"ip":{"addr":"68.171.218.65","port":0,"asn":22878,"as":"ASACENET1","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"elderly-natural-sing.glitch.me/#exemple@exemple.com","fqdn":"elderly-natural-sing.glitch.me","domain":"elderly-natural-sing.glitch.me","tld":"glitch.me"},"title":"exemple - Mail"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T10:15:09Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-07-08 18:12:20","alert_count":0,"request_count":9,"received_data":7986,"sent_data":2943,"comment":"","tags":null,"fingerprints":null},{"fqdn":"inodive.us","ip":{"addr":"68.171.218.65","port":0,"asn":22878,"as":"ASACENET1","country":"United States","country_code":"US"},"domain_registered":"2009-02-26","domain_rank":0,"first_seen":"2018-02-07 14:28:20","last_seen":"2022-05-24 09:50:51","alert_count":1,"request_count":1,"received_data":439,"sent_data":508,"comment":"","tags":null,"fingerprints":null},{"fqdn":"o.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":0,"first_seen":"2024-04-24 13:44:57","last_seen":"2024-07-08 18:24:16","alert_count":0,"request_count":1,"received_data":700,"sent_data":325,"comment":"","tags":null,"fingerprints":null},{"fqdn":"i.ibb.co","ip":{"addr":"162.19.58.157","port":443,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"domain_registered":"2010-07-20","domain_rank":13485,"first_seen":"2018-11-25 11:13:48","last_seen":"2024-07-08 21:35:22","alert_count":0,"request_count":2,"received_data":327991,"sent_data":904,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10 22:14:26","last_seen":"2024-07-08 21:59:01","alert_count":0,"request_count":1,"received_data":1873,"sent_data":457,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ka-f.fontawesome.com","ip":{"addr":"172.67.139.119","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2012-10-18","domain_rank":3598,"first_seen":"2019-12-17 07:36:13","last_seen":"2024-07-08 22:11:06","alert_count":0,"request_count":5,"received_data":295619,"sent_data":2624,"comment":"","tags":null,"fingerprints":null},{"fqdn":"kit.fontawesome.com","ip":{"addr":"104.18.40.68","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-10-18","domain_rank":1868,"first_seen":"2019-12-16 20:51:31","last_seen":"2024-07-08 18:19:25","alert_count":0,"request_count":1,"received_data":13432,"sent_data":467,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ocsp.r2m03.amazontrust.com","ip":{"addr":"143.204.53.97","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2007-05-11","domain_rank":0,"first_seen":"2023-02-21 01:06:24","last_seen":"2024-07-09 15:13:58","alert_count":0,"request_count":1,"received_data":942,"sent_data":338,"comment":"","tags":null,"fingerprints":null},{"fqdn":"elderly-natural-sing.glitch.me","ip":{"addr":"44.193.58.75","port":0,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":2,"request_count":2,"received_data":166108,"sent_data":1032,"comment":"","tags":null,"fingerprints":null},{"fqdn":"logo.clearbit.com","ip":{"addr":"54.240.174.123","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2003-07-04","domain_rank":27344,"first_seen":"2015-06-30 18:39:45","last_seen":"2024-07-09 15:25:10","alert_count":0,"request_count":3,"received_data":8941,"sent_data":1345,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2024-07-10T12:01:41Z","timestamp":1720612901,"ip_dst":{"addr":"44.193.58.75","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"ip_src":{"addr":"Client IP","port":53060,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing","source":"{\"timestamp\":\"2024-07-10T12:01:41.224368+0000\",\"flow_id\":995435848500088,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.7\",\"src_port\":53060,\"dest_ip\":\"44.193.58.75\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2031919,\"rev\":1,\"signature\":\"ET HUNTING Suspicious Glitch Hosted TLS SNI Request - Possible Phishing Landing\",\"category\":\"Possible Social Engineering Attempted\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Web_Browsers\"],\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2021_03_10\"],\"deployment\":[\"Perimeter\"],\"mitre_tactic_id\":[\"TA0001\"],\"mitre_tactic_name\":[\"Initial_Access\"],\"mitre_technique_id\":[\"T1566\"],\"mitre_technique_name\":[\"Phishing\"],\"signature_severity\":[\"Critical\"],\"tag\":[\"Phishing\"],\"updated_at\":[\"2021_03_10\"]}},\"tls\":{\"sni\":\"elderly-natural-sing.glitch.me\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"50a9e7b112931e541503e8a2499252b9\",\"string\":\"771,49199,0-11-65281-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":4682,\"start\":\"2024-07-10T12:01:41.033656+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2024-07-10T12:01:41Z","timestamp":1720612901,"ip_dst":{"addr":"44.193.58.75","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"ip_src":{"addr":"Client IP","port":53060,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Online Application Hosting Domain (glitch .me in TLS SNI)","source":"{\"timestamp\":\"2024-07-10T12:01:41.224368+0000\",\"flow_id\":995435848500088,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.7\",\"src_port\":53060,\"dest_ip\":\"44.193.58.75\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2050128,\"rev\":1,\"signature\":\"ET INFO Observed Online Application Hosting Domain (glitch .me in TLS SNI)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2024_01_17\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2024_01_17\"]}},\"tls\":{\"sni\":\"elderly-natural-sing.glitch.me\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"50a9e7b112931e541503e8a2499252b9\",\"string\":\"771,49199,0-11-65281-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":4682,\"start\":\"2024-07-10T12:01:41.033656+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Generic phishing","verdict":"phishing","severity":"medium","comment":"","tags":["phishing"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"b2729272efc86b5b57fa8963eeb62312","sha1":"ee6abf3347a068d400975fff1b5009fbe17a048d","sha256":"8f4d38733138b80011fe6a85736a5d869c461331bcdb358f9c391877dabb78e7","sha512":"15bb38e558756dfe1de4357cba99305030d2aeabf01a84706914208ac66ba8b44a7c53cef64c61834dc819a8833826a8e1e04ffeaf86da9a0e3fa9aee952e2db","ssdeep":"48:DjaEnnc5MIe6SBXqAVlOm1yqyJysHwbkogMCtDDlkQGktBONV5mpsAktBEsAktBY:DjO3e6SBoi/Nk9DqQXrO35rVr5K","tlshash":"dda1fb8b3265047c2b876feb57de9344382f3e4619019018be2c8b5e9354f96d0b6fda","size":4208,"data":"","first_seen":"2024-07-09T21:11:57Z","last_seen":"2024-08-19T17:28:00.830361Z","times_seen":53,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"elderly-natural-sing.glitch.me/#exemple@exemple.com","fqdn":"elderly-natural-sing.glitch.me","domain":"elderly-natural-sing.glitch.me","tld":"glitch.me"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"69a6cd1dd1e0afb5ba01598f1251f724","sha1":"67df007cd27c632dbaa49daa40de7559c418ac5c","sha256":"7458cb6733e2e617edc3e798d3cdb1341addaa5ccf0a40ce2838a0a5de8fd89a","sha512":"01a9437cd31f8e6deb2eaf1679ef08847093e5054675f66d1eef91c26dcaf8b568d835290c924ed6d03476968dd0933a7811ea65bd22068f3b391a3f5bd74813","ssdeep":"768:F78P1IkL6NkSHbKVRb0Pt+tXtWatljmkYga4Anx1Lr2rS0HYVWcRS2/5:adIkL6Nkql","tlshash":"c283153cf8e8906b9016122bbf3d7789ac107c06bc9a62c5742879516fd1c7b7b601be","size":82490,"data":"","first_seen":"2024-07-09T21:11:57Z","last_seen":"2024-08-19T17:28:00.829607Z","times_seen":53,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit.fontawesome.com/f6136e9b49.js","fqdn":"kit.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"104.18.40.68","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"95ca010d08c5ef1c7fc1dac41ffa1f4c","sha1":"42b3e8e5d65b482a558b722ead345d49db0b5148","sha256":"d39cccc4cd6f99a67eb05aa4f43c8ecdd9cb9fb1b7966b0a7b02b22478832124","sha512":"b1bb585e190e1f553d5e55fe70393b521b7a1162c396173a59f81eac9de86ab58cdcc7faa46da567775613889949bb95346e1e492d260f2ff448e87419f3e53f","ssdeep":"192:RO3pHufQPTACpF4Pvhzz6E/ra/sb4nZIPWfz3JBGvh3e1Q5l8h6LDeFTjC0:RdRCchzzYfnqejah3e1Q5l8h6vb0","tlshash":"e832c3997691f1b246ab7160c03f620bf276312a3006d020e25dd9e4ac7dd6e9233f2e","size":11890,"data":"","first_seen":"2024-04-10T20:28:11Z","last_seen":"2024-08-20T05:05:12.30746Z","times_seen":379,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"0acdfca501e26a2114cf4294a09b3cd0","sha1":"9804628e215365e6ef8f384893aeaaa946d1289a","sha256":"41684d1819aa4fa70b576317a06af862d44cc9bac63f50984ba836572296e576","sha512":"eab065e750bfa5df19b4a49e6b3b4934283eabf6e2cfa80afd8015ccbd35a4a71e2535ec4ab8e5c2dcae05f1e86bf04cc6d1adf5e09a7ff89b6a175210acfef1","ssdeep":"192:zgxcmPxZ6HNT/yNlwl9yIGNaRIPu3gMic8lbrisTisyGiRyiM:NafIEIQaWmwMiBHiSi9GiBM","tlshash":"fc2294536af704627153a5f837e6a7883b2241035a06c9187fac66a59f89ed990e33cc","size":10662,"data":"","first_seen":"2024-07-09T21:11:57Z","last_seen":"2024-08-19T17:28:00.831116Z","times_seen":53,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:40.005635686Z","timestamp":1720612900005,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"41E6A348AAC9E9DB44BFA14B3AA29D411F4489B375AE1F1BE6B0D280AF98541D\"\r\nLast-Modified: Mon, 08 Jul 2024 01:53:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=5252\r\nExpires: Wed, 10 Jul 2024 13:29:11 GMT\r\nDate: Wed, 10 Jul 2024 12:01:39 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"b34ca6af54e2b9fea57d418f5d1928f7","sha1":"510b69f4470789a573217726d6f1a3d6ee765460","sha256":"41e6a348aac9e9db44bfa14b3aa29d411f4489b375ae1f1be6b0d280af98541d","sha512":"56fc288af1ca048d6ad95019c5fe4a6be829ae0e6d834e51d920e79cb96aa3de97763b94d41b4c691f461b7a46ef961dd157b791947e0463310e5d0abd1422c8","ssdeep":"","tlshash":"def0055627d5a6016a710a911de5d31a1e2058fb305018f223d451e33923bbe1ec8446","first_seen":"2024-07-08T05:19:45Z","last_seen":"2024-08-19T17:39:41.553406Z","times_seen":34939,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:40.047160799Z","timestamp":1720612900047,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"EE690BACDDF55FD12AE0C9C39E330E0A1A18776B9EDC91B4AA6C5BAE28824F1E\"\r\nLast-Modified: Tue, 09 Jul 2024 15:28:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=21033\r\nExpires: Wed, 10 Jul 2024 17:52:13 GMT\r\nDate: Wed, 10 Jul 2024 12:01:40 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"e08576e0904dc9903a9c20fa9e3d15b8","sha1":"74feff76140500fd4a61e89c7e9d8d0a60df1183","sha256":"ee690bacddf55fd12ae0c9c39e330e0a1a18776b9edc91b4aa6c5bae28824f1e","sha512":"ce87a5e7c77473d402b395ff6dfc4697ae83d56b168eccca85aed994fbe8d48ed47831aa316978afcefccc1a8ab551ac5279cfc7f3ffc559b7eaea1b2770e2b3","ssdeep":"","tlshash":"01f07e43242b3f20b7aa120838f8cc0d2e202ab6284408c438b282c33807bea8ee1407","first_seen":"2024-07-09T22:22:49Z","last_seen":"2024-08-19T17:27:32.492818Z","times_seen":16077,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:40.299022705Z","timestamp":1720612900299,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"5D1BC1C01894FD88A0D4680490977488D6458BB58A98ACE24EF8AA103538BC1F\"\r\nLast-Modified: Tue, 09 Jul 2024 23:47:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=16431\r\nExpires: Wed, 10 Jul 2024 16:35:31 GMT\r\nDate: Wed, 10 Jul 2024 12:01:40 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"e7492695b5254a3a63fcffb4f1ee8cec","sha1":"0361713c6d8129210245347284c7c6babfd28fb7","sha256":"5d1bc1c01894fd88a0d4680490977488d6458bb58a98ace24ef8aa103538bc1f","sha512":"ec0e52128f983dbd74415511de8ce735b2b718b43605e9ac47400438cd5e97c87e35eb9ba74da906afc0cc7f6d28beca431b3cd9f15b958bce49500f659db147","ssdeep":"","tlshash":"d5f0549736b6bc516ab835253dfbda3e7a309924b15049bceca51291ec383a7418040c","first_seen":"2024-07-10T02:50:08Z","last_seen":"2024-08-19T17:26:17.073472Z","times_seen":39709,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:40.420056178Z","timestamp":1720612900420,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"C86804EFF01A7BB9FF866508BFDB1B071CFA4A26617D11094B9F5226E1A4B970\"\r\nLast-Modified: Tue, 09 Jul 2024 16:18:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=16877\r\nExpires: Wed, 10 Jul 2024 16:42:57 GMT\r\nDate: Wed, 10 Jul 2024 12:01:40 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"fc076d7a99abd74b9da6b35304bb93e9","sha1":"9d541501d5141dcf7b4d839d6fcffabec81e1a14","sha256":"c86804eff01a7bb9ff866508bfdb1b071cfa4a26617d11094b9f5226e1a4b970","sha512":"ff10580406ed0db383ff2d2dded09db4544cc042b2e609083d89b33b2d0bf6e77591dffa46e88fc3d5460d288e7416f8d1a145bd1bc80cae5f950955f7d88a14","ssdeep":"","tlshash":"5bf00e0210d8be02933a0f056899e22a6c00d6ac728051f730dc05957672b9b87c8848","first_seen":"2024-07-09T20:48:14Z","last_seen":"2024-08-19T17:28:08.063831Z","times_seen":23416,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"inodive.us/wp-content/css/ZXhlbXBsZUBleGVtcGxlLmNvbQ==","fqdn":"inodive.us","domain":"inodive.us","tld":"us"},"ip":{"addr":"68.171.218.65","port":0,"asn":22878,"as":"ASACENET1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:40.844216125Z","timestamp":1720612900844,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /wp-content/css/ZXhlbXBsZUBleGVtcGxlLmNvbQ== HTTP/1.1\r\nHost: inodive.us\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Wed, 10 Jul 2024 12:01:40 GMT\r\nServer: Apache\r\nX-Powered-By: PHP/7.4.33\r\nVary: Accept-Encoding,User-Agent\r\nContent-Encoding: gzip\r\nStrict-Transport-Security: max-age=31536000\r\nContent-Length: 123\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":123,"size_decoded":125,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"dd5c1d376183e705231cf544bc77deac","sha1":"f9485bcef864dae39c9c7a65984bad80b92840e0","sha256":"e3accc472789f25f756c44ce0de873ca805bacd1cacf5987665e6d02627df3b7","sha512":"13233873b3d7ac9ad6353615d0e34488f9cbef9ee087146fdf3e14f4836744390d14e191f62a72abf1bed0a6f37d886e156b7bcb61c951cae9de53674fe74550","ssdeep":"","tlshash":"29b0929b0c17c605a55004e0d166ba0aaaab519c1608d89592e0c4667548bde4e5a9d4","first_seen":"2024-08-19T17:23:09.810514Z","last_seen":"2024-08-19T17:23:09.810514Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null}]}},{"url":{"schema":"http","addr":"ocsp.r2m03.amazontrust.com/","fqdn":"ocsp.r2m03.amazontrust.com","domain":"amazontrust.com","tld":"com"},"ip":{"addr":"143.204.53.97","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:41.275306188Z","timestamp":1720612901275,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: ocsp.r2m03.amazontrust.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 83\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nContent-Length: 471\r\nConnection: keep-alive\r\nAccept-Ranges: bytes\r\nCache-Control: max-age=7200\r\nDate: Wed, 10 Jul 2024 12:01:41 GMT\r\nLast-Modified: Wed, 10 Jul 2024 11:19:05 GMT\r\nServer: ECAcc (amb/6B26)\r\nX-Cache: Miss from cloudfront\r\nVia: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)\r\nX-Amz-Cf-Pop: OSL50-C1\r\nX-Amz-Cf-Id: 22ceTTRsCzCcugAqsd5AjnS_1gwXTjH-YBAdBRg85Vj_dIKtVS2TEg==\r\nAge: 2556\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":471,"size_decoded":471,"mime_type":"application/octet-stream","magic":"data","md5":"61f15d2d834e4e25a8ce7ce11fa7d78b","sha1":"d15d8ec07814a18a24fa05b16aa8771a7e28a161","sha256":"6f09894109d9d84e5a050521d9b406480f1545cf92c9670985f706991817bfd8","sha512":"d6e987b0ed8f21c25ab804ffdb2e9af9a6ffe0837f4c166762dab3ea31041ea6fcea54dee97abcfc2e76108c9c3938907cc18537d383a2eabbfedb02bd1cc142","ssdeep":"","tlshash":"a6f05c0f15bdb9a63a8034ac6ff98868384ac115e1d64760357401c15d05bbee2a684d","first_seen":"2024-07-10T02:42:54Z","last_seen":"2024-08-19T17:26:02.209071Z","times_seen":90,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"elderly-natural-sing.glitch.me/","fqdn":"elderly-natural-sing.glitch.me","domain":"elderly-natural-sing.glitch.me","tld":"glitch.me"},"ip":{"addr":"44.193.58.75","port":0,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:41.672398626Z","timestamp":1720612901672,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: elderly-natural-sing.glitch.me\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://inodive.us/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 10 Jul 2024 12:01:41 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 82529\r\nx-amz-id-2: cqg+vMdFi/xYYE9/5rbLgG09H+JxN6bDy6k0pUQhhY6J+dPOVVEUAT1rM0cSwlkHgeaK8hesAJ35z2nKCWptEBIMjX5IpSMM\r\nx-amz-request-id: P60WXK907X9Z9HEP\r\nlast-modified: Tue, 09 Jul 2024 15:59:01 GMT\r\netag: \"d44ae5223e70c5edad69e18e08891303\"\r\nx-amz-server-side-encryption: AES256\r\ncache-control: no-cache\r\nx-amz-version-id: 8b3VbRfCWJYlN8mUlpM0T3JXMW3yAnTz\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":82529,"size_decoded":82529,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65500)","md5":"d44ae5223e70c5edad69e18e08891303","sha1":"e3dfed10f5f3d56f0cd03a4b6c332dab0a318b86","sha256":"f0f3a38d85f5db4687da40b9c1e8fd1fba14a924a95f284341b7f54f928d34eb","sha512":"280301449c46813f110b8fe82897fe8e24116f62e489de9a32d67ceb3156be186a5831036d6a28a05db4d2385c9b23c69e34fea8c644daff14b8fadf0d1968a2","ssdeep":"768:878P1IkL6NkSHbKVRb0Pt+tXtWatljmkYga4Anx1Lr2rS0HYVWcRS2/z:hdIkL6NkqX","tlshash":"f083153cf8e8906b9016122bbf3d7789ac107c06bc9a66c5742879516fd1c7b7b601be","first_seen":"2024-07-09T21:11:57Z","last_seen":"2024-08-19T17:28:00.818507Z","times_seen":53,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null}]}},{"url":{"schema":"http","addr":"o.pki.goog/wr2","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:41.759208144Z","timestamp":1720612901759,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /wr2 HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Wed, 10 Jul 2024 12:01:41 GMT\r\nCache-Control: public, max-age=14400\r\nServer: ocsp_responder\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":472,"mime_type":"application/octet-stream","magic":"data","md5":"f43ac803ddaed04e157d8f4cc47f9d30","sha1":"3b124d1a4787acb012f8dba86c2682286225e6ec","sha256":"fcc49c4f85feed0addfb35ac975528e62fd12609e78afb3acab0451051523e88","sha512":"7f5af7ef17bedabb4a2502a6f0571fb45da6c566fbe2a4e957246ef23caecd6d7268336895ff25dddd47a1b6d2582c592d57a8f6d9a43a205425c0e8769bb3e1","ssdeep":"","tlshash":"30f0540613a02c724e33c41833ece97e141489e80c2d2a0a7177755427612f90e04d6b","first_seen":"2024-07-10T00:01:20Z","last_seen":"2024-08-19T17:26:49.624834Z","times_seen":1803,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"i.ibb.co/7yS7TgY/1BJKFkm.png","fqdn":"i.ibb.co","domain":"ibb.co","tld":"co"},"ip":{"addr":"162.19.58.157","port":443,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://elderly-natural-sing.glitch.me/#exemple@exemple.com","date":"2024-07-10T12:01:41.705Z","timestamp":1720612901705,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ibb.co","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 21 Jun 2024 07:49:37 GMT","end":"Thu, 19 Sep 2024 07:49:36 GMT"},"fingerprint":{"sha1":"5F:18:DC:78:83:E8:A9:2D:9B:15:95:2F:AC:0C:82:09:04:D5:10:6D","sha256":"B8:5C:F2:84:16:B7:16:FF:7E:B5:1B:EB:09:B0:45:C2:8D:04:ED:90:A0:E5:36:61:17:F4:FE:30:86:B6:F7:B1"}}},"request":{"raw":"GET /7yS7TgY/1BJKFkm.png HTTP/1.1\r\nHost: i.ibb.co\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://elderly-natural-sing.glitch.me/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 10 Jul 2024 12:01:41 GMT\r\ncontent-type: image/png\r\ncontent-length: 36383\r\nlast-modified: Fri, 15 Mar 2024 16:24:11 GMT\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000, public\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":36383,"size_decoded":36383,"mime_type":"image/png","magic":"PNG image data, 1000 x 100, 8-bit/color RGBA, non-interlaced","md5":"f4f008291c3c2a0a650872b3d275333f","sha1":"15a533adeb26d26fb06517a707dc1d13f2e1f7a7","sha256":"a59679ee3b01c11c153681481e175b4964bdea8fc3fd8676b5fd2cffbcf38bf7","sha512":"97483a979291efbb33e8da13b6e70816c629f3d3f20070de0795c0c04a5dbd6866377de6a41862452c36c420dca898f28eee3eb031932a375b52c31edd745cd8","ssdeep":"768:C2yBauR1G083vNuREHfwWDMrtULW+ja+ddTmeBe+Bc1aallbWAGsMTjkb/ZI:LWay4NluRqDMrS2+LDBe+q1JbWObhI","tlshash":"7df2cf25f94348c3f4842d704ebb5c659943ce4006da67f387ab0839cabc9dc65e5bba","first_seen":"2024-01-14T10:56:08Z","last_seen":"2026-04-05T10:01:11.347474Z","times_seen":732,"resource_available":false,"data":null}},"time_used":144,"timings":{"blocked":40,"dns":0,"connect":0,"send":0,"wait":85,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"i.ibb.co/nfzhv0y/ZvlG0Sw.jpg","fqdn":"i.ibb.co","domain":"ibb.co","tld":"co"},"ip":{"addr":"162.19.58.157","port":443,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://elderly-natural-sing.glitch.me/#exemple@exemple.com","date":"2024-07-10T12:01:41.701Z","timestamp":1720612901701,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ibb.co","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Fri, 21 Jun 2024 07:49:37 GMT","end":"Thu, 19 Sep 2024 07:49:36 GMT"},"fingerprint":{"sha1":"5F:18:DC:78:83:E8:A9:2D:9B:15:95:2F:AC:0C:82:09:04:D5:10:6D","sha256":"B8:5C:F2:84:16:B7:16:FF:7E:B5:1B:EB:09:B0:45:C2:8D:04:ED:90:A0:E5:36:61:17:F4:FE:30:86:B6:F7:B1"}}},"request":{"raw":"GET /nfzhv0y/ZvlG0Sw.jpg HTTP/1.1\r\nHost: i.ibb.co\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://elderly-natural-sing.glitch.me/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Wed, 10 Jul 2024 12:01:41 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 290884\r\nlast-modified: Fri, 15 Mar 2024 11:41:27 GMT\r\nexpires: Thu, 31 Dec 2037 23:55:55 GMT\r\ncache-control: max-age=315360000, public\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":290884,"size_decoded":290884,"mime_type":"image/jpeg","magic":"JPEG image data, progressive, precision 8, 2529x1350, components 3","md5":"efa223fc4fbf982e380696cf1e733520","sha1":"f2b2d1a4fbe41dc13a4686765322dd6acd4df21a","sha256":"d0eb1eeb6dcb3e4e264284cec98e59ae7c056b0f31b48db1ca582a4246a27f05","sha512":"478df69632c1bb6e8d8cebd2ec0877f53b30fe4ff4fc318d5adde4662966874903d53d89e9fd29bed945e22ff31bc475f88fdbf55097ef404b1f46a341ea4076","ssdeep":"6144:H4mjIi0CEq85Piaa2KRo5cnLB2fdN5mNN6VdB8/ov:Hjwrq8SOcnLB2fdN5mNNc1","tlshash":"0654f1a3cf6b803bfb2f5bbaced7e2784d925d98e916dc070a95de043b851151e42212","first_seen":"2024-01-14T10:56:08Z","last_seen":"2026-04-05T10:01:11.346885Z","times_seen":745,"resource_available":false,"data":null}},"time_used":211,"timings":{"blocked":44,"dns":1,"connect":20,"send":0,"wait":20,"receive":96,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Roboto:100,400,500,700","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://elderly-natural-sing.glitch.me/#exemple@exemple.com","date":"2024-07-10T12:01:41.693Z","timestamp":1720612901693,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Thu, 13 Jun 2024 16:32:33 GMT","end":"Thu, 05 Sep 2024 16:32:32 GMT"},"fingerprint":{"sha1":"C7:12:52:3A:BD:E0:73:20:AD:A8:5F:DF:12:DB:C6:DE:AF:63:88:6B","sha256":"D5:2E:9D:B3:DA:FA:7E:B6:3F:FB:FE:44:DA:B9:09:DB:FA:40:97:D5:41:54:69:4C:8B:08:74:C9:8F:C5:51:59"}}},"request":{"raw":"GET /css?family=Roboto:100,400,500,700 HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://elderly-natural-sing.glitch.me/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Wed, 10 Jul 2024 12:01:41 GMT\r\ndate: Wed, 10 Jul 2024 12:01:41 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1243,"size_decoded":1243,"mime_type":"text/css; charset=utf-8","magic":"gzip compressed data, max compression","md5":"4f04ee2f47ceea5b58afa0db4f97dd81","sha1":"7f739a52aaf1f37f63d06d9c3c72f890a9d0b1a9","sha256":"9f1205fac77ff08096716674858d2d928674bf818fecbbbcebc5d1ec52bdf908","sha512":"9ef849db2be85d9f97c6237b507a6abc5c2712e975a87d19e2879aee6dffd9d08eec30c1ca0ea38a221d67afbb89d6815d7b9d8635988601c37816b3e041e8c5","ssdeep":"","tlshash":"5821e70d26e17152aa299825abede46f254dce34df1835075223af100b022f8da42d2f","first_seen":"2024-07-10T13:02:57Z","last_seen":"2024-08-19T17:23:21.175086Z","times_seen":10,"resource_available":false,"data":null}},"time_used":164,"timings":{"blocked":68,"dns":1,"connect":8,"send":0,"wait":23,"receive":0,"ssl":60},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"logo.clearbit.com/exemple.com","fqdn":"logo.clearbit.com","domain":"clearbit.com","tld":"com"},"ip":{"addr":"54.240.174.123","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://elderly-natural-sing.glitch.me/#exemple@exemple.com","date":"2024-07-10T12:01:41.980Z","timestamp":1720612901980,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"clearbit.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Mon, 22 Jan 2024 00:00:00 GMT","end":"Tue, 18 Feb 2025 23:59:59 GMT"},"fingerprint":{"sha1":"CE:16:94:BB:21:1F:D1:5C:C5:B1:B0:D0:51:6C:C5:26:30:0D:59:72","sha256":"D3:49:0C:0D:B2:1F:D1:DC:15:AD:B0:C4:87:3D:44:DF:6F:B9:83:1E:7D:C7:5E:69:31:B3:EB:15:DB:CE:32:21"}}},"request":{"raw":"GET /exemple.com HTTP/1.1\r\nHost: logo.clearbit.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://elderly-natural-sing.glitch.me/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1910\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=2592000\r\ndate: Tue, 02 Jul 2024 08:08:20 GMT\r\nx-envoy-response-flags: -\r\nserver: Clearbit\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: 0VhZKTBeaNZbHjaPE-Lh2CnKZJPVdKCu3nof_weZwn0JYIGGa9cA8w==\r\nage: 705202\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1910,"size_decoded":1910,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"b883fbaef2e124143d14bc0f7a890aff","sha1":"4c3655a327afe2796bc8735de7b19af50193b62b","sha256":"11b9ab36d284646f128cfec0e9507ae91d6a2ac12352959e3c3c88ea1b4f9bd1","sha512":"b30504eb49102cacca9c48c3b1ee3606c9bc1ad658b2f1a5c51b3013bd67c54c352dd703e37f10df1d447ced89e2d0617e5a16624ccafa93257bb500803c5ede","ssdeep":"","tlshash":"43413b5bc497cd36cc17dba81f261fedd1a68b91a300e49b6026094832c95136fcd114","first_seen":"2024-06-05T16:57:35Z","last_seen":"2024-09-20T20:11:45.405752Z","times_seen":5,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":8,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"logo.clearbit.com/exemple.com","fqdn":"logo.clearbit.com","domain":"clearbit.com","tld":"com"},"ip":{"addr":"54.240.174.123","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://elderly-natural-sing.glitch.me/#exemple@exemple.com","date":"2024-07-10T12:01:41.980Z","timestamp":1720612901980,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"clearbit.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Mon, 22 Jan 2024 00:00:00 GMT","end":"Tue, 18 Feb 2025 23:59:59 GMT"},"fingerprint":{"sha1":"CE:16:94:BB:21:1F:D1:5C:C5:B1:B0:D0:51:6C:C5:26:30:0D:59:72","sha256":"D3:49:0C:0D:B2:1F:D1:DC:15:AD:B0:C4:87:3D:44:DF:6F:B9:83:1E:7D:C7:5E:69:31:B3:EB:15:DB:CE:32:21"}}},"request":{"raw":"GET /exemple.com HTTP/1.1\r\nHost: logo.clearbit.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://elderly-natural-sing.glitch.me/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1910\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=2592000\r\ndate: Tue, 02 Jul 2024 08:08:20 GMT\r\nx-envoy-response-flags: -\r\nserver: Clearbit\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: 3HbGoj41iMG3W1UdFrVPP3CQzYgLZXCgiIZKpUTenEaoG5gdvXfRvw==\r\nage: 705202\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1910,"size_decoded":1910,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced","md5":"b883fbaef2e124143d14bc0f7a890aff","sha1":"4c3655a327afe2796bc8735de7b19af50193b62b","sha256":"11b9ab36d284646f128cfec0e9507ae91d6a2ac12352959e3c3c88ea1b4f9bd1","sha512":"b30504eb49102cacca9c48c3b1ee3606c9bc1ad658b2f1a5c51b3013bd67c54c352dd703e37f10df1d447ced89e2d0617e5a16624ccafa93257bb500803c5ede","ssdeep":"","tlshash":"43413b5bc497cd36cc17dba81f261fedd1a68b91a300e49b6026094832c95136fcd114","first_seen":"2024-06-05T16:57:35Z","last_seen":"2024-09-20T20:11:45.405752Z","times_seen":5,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":8,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ka-f.fontawesome.com/releases/v6.5.2/webfonts/free-fa-solid-900.woff2","fqdn":"ka-f.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.67.139.119","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://elderly-natural-sing.glitch.me/#exemple@exemple.com","date":"2024-07-10T12:01:42.201Z","timestamp":1720612902201,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ka-f.fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 01 Jul 2024 12:54:00 GMT","end":"Sun, 29 Sep 2024 12:53:59 GMT"},"fingerprint":{"sha1":"6D:72:F5:B4:68:5B:A6:B0:2B:E9:FE:83:27:B3:F4:90:E8:F3:E9:0A","sha256":"7F:01:AB:AB:CA:FB:15:54:06:47:4F:52:12:B1:CE:88:BD:6C:21:A3:F2:40:F8:7B:52:60:91:FE:80:AC:DF:B2"}}},"request":{"raw":"GET /releases/v6.5.2/webfonts/free-fa-solid-900.woff2 HTTP/1.1\r\nHost: ka-f.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://elderly-natural-sing.glitch.me\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://elderly-natural-sing.glitch.me/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 10 Jul 2024 12:01:42 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 156388\r\nlast-modified: Tue, 02 Apr 2024 15:51:14 GMT\r\netag: \"ae015e3286ef56a0daf8e83838a32a88\"\r\nx-amz-server-side-encryption: AES256\r\ncache-control: max-age=31556926\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: fa-kit-token\r\naccess-control-max-age: 3000\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: rRkhPvO0IxqE4_fyAP-icq9ssCHnAenXvhFfkY5NMRhPXejay6_CUg==\r\nage: 60615\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=fsbVu0eJNb5sdGASxpcrqG4816I2%2BUkGHznbIkQRo%2Bwkbi44a0jKgrII0fSjiuAjLD3ZdvadOc5QZ3uXx7bfTiyoJSRv4ryNLLDTtoKlGx8dAwBA9SpQ%2BNGpavvb1kFVFhCAVuheTw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8a10668eda0056a9-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":156388,"size_decoded":156388,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 156388, version 773.1280","md5":"ae015e3286ef56a0daf8e83838a32a88","sha1":"7c18577fd6c4e7d9036b244215ace3945372eefe","sha256":"41dca0965bdfd255f85e7fc8e9a3dc1fe3eb810996c553d4ef2b8872737ee825","sha512":"99240579bf51b97004ebc504e306c3a41043425c3762a7a6d20e1e2c79e71c554d6c3c789a74e42b6cacc871beb0487b9f9ebf169a9a47370f337a98dd4e653b","ssdeep":"3072:PtvpoTBAVLA3d7fqRangsxkiELKsO2XH3jDeiumsuMj/vtN5tvpuhHOu/:dpoTcLAt7fCggsxTEeaXBZsNtxuAu/","tlshash":"c8e323cea037972804a9a1e1b38b5db6e390f919460b27fb74a4172d74d6f8d9e3d00d","first_seen":"2024-04-03T07:43:34Z","last_seen":"2026-05-03T13:12:53.742607Z","times_seen":1536,"resource_available":false,"data":null}},"time_used":33,"timings":{"blocked":12,"dns":0,"connect":0,"send":0,"wait":13,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:42.262297848Z","timestamp":1720612902262,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2\"\r\nLast-Modified: Mon, 08 Jul 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9114\r\nExpires: Wed, 10 Jul 2024 14:33:36 GMT\r\nDate: Wed, 10 Jul 2024 12:01:42 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"d7b2c37e4b6c062d80ad32046f42d3d8","sha1":"131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c","sha256":"317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2","sha512":"e8d8acac8c0eb8cc7d365eca9121ee37756ccf1d8b77d6177f316593c50a660d3af8ab40f67f47a8fd9fe0fe75f51070e6cf3c69b49f57aed1b4afc155ca5cd3","ssdeep":"","tlshash":"02f00e023df7bd80b3e944911ebde63bf8107aa7305075e630c0828328b87a74744c9a","first_seen":"2024-07-08T09:56:38Z","last_seen":"2024-08-19T17:38:29.907666Z","times_seen":36963,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:42.263399359Z","timestamp":1720612902263,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2\"\r\nLast-Modified: Mon, 08 Jul 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9114\r\nExpires: Wed, 10 Jul 2024 14:33:36 GMT\r\nDate: Wed, 10 Jul 2024 12:01:42 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"d7b2c37e4b6c062d80ad32046f42d3d8","sha1":"131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c","sha256":"317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2","sha512":"e8d8acac8c0eb8cc7d365eca9121ee37756ccf1d8b77d6177f316593c50a660d3af8ab40f67f47a8fd9fe0fe75f51070e6cf3c69b49f57aed1b4afc155ca5cd3","ssdeep":"","tlshash":"02f00e023df7bd80b3e944911ebde63bf8107aa7305075e630c0828328b87a74744c9a","first_seen":"2024-07-08T09:56:38Z","last_seen":"2024-08-19T17:38:29.907666Z","times_seen":36963,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:42.264362772Z","timestamp":1720612902264,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2\"\r\nLast-Modified: Mon, 08 Jul 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9114\r\nExpires: Wed, 10 Jul 2024 14:33:36 GMT\r\nDate: Wed, 10 Jul 2024 12:01:42 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"d7b2c37e4b6c062d80ad32046f42d3d8","sha1":"131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c","sha256":"317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2","sha512":"e8d8acac8c0eb8cc7d365eca9121ee37756ccf1d8b77d6177f316593c50a660d3af8ab40f67f47a8fd9fe0fe75f51070e6cf3c69b49f57aed1b4afc155ca5cd3","ssdeep":"","tlshash":"02f00e023df7bd80b3e944911ebde63bf8107aa7305075e630c0828328b87a74744c9a","first_seen":"2024-07-08T09:56:38Z","last_seen":"2024-08-19T17:38:29.907666Z","times_seen":36963,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.76.226","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:42.265266253Z","timestamp":1720612902265,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2\"\r\nLast-Modified: Mon, 08 Jul 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9114\r\nExpires: Wed, 10 Jul 2024 14:33:36 GMT\r\nDate: Wed, 10 Jul 2024 12:01:42 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"d7b2c37e4b6c062d80ad32046f42d3d8","sha1":"131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c","sha256":"317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2","sha512":"e8d8acac8c0eb8cc7d365eca9121ee37756ccf1d8b77d6177f316593c50a660d3af8ab40f67f47a8fd9fe0fe75f51070e6cf3c69b49f57aed1b4afc155ca5cd3","ssdeep":"","tlshash":"02f00e023df7bd80b3e944911ebde63bf8107aa7305075e630c0828328b87a74744c9a","first_seen":"2024-07-08T09:56:38Z","last_seen":"2024-08-19T17:38:29.907666Z","times_seen":36963,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-10T12:01:42.266125Z","timestamp":1720612902266,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2\"\r\nLast-Modified: Mon, 08 Jul 2024 05:32:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=9105\r\nExpires: Wed, 10 Jul 2024 14:33:27 GMT\r\nDate: Wed, 10 Jul 2024 12:01:42 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"d7b2c37e4b6c062d80ad32046f42d3d8","sha1":"131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c","sha256":"317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2","sha512":"e8d8acac8c0eb8cc7d365eca9121ee37756ccf1d8b77d6177f316593c50a660d3af8ab40f67f47a8fd9fe0fe75f51070e6cf3c69b49f57aed1b4afc155ca5cd3","ssdeep":"","tlshash":"02f00e023df7bd80b3e944911ebde63bf8107aa7305075e630c0828328b87a74744c9a","first_seen":"2024-07-08T09:56:38Z","last_seen":"2024-08-19T17:38:29.907666Z","times_seen":36963,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kit.fontawesome.com/f6136e9b49.js","fqdn":"kit.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"104.18.40.68","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://elderly-natural-sing.glitch.me/#exemple@exemple.com","date":"2024-07-10T12:01:41.697Z","timestamp":1720612901697,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.fontawesome.com","organization":"FONTICONS, INC."},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 04 Dec 2023 00:00:00 GMT","end":"Fri, 03 Jan 2025 23:59:59 GMT"},"fingerprint":{"sha1":"93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D","sha256":"F4:02:B3:09:35:60:93:92:CF:86:5A:5C:4B:BF:30:F7:3A:12:6B:A7:0A:0F:9E:C6:0A:EC:4F:33:E1:DA:DA:54"}}},"request":{"raw":"GET /f6136e9b49.js HTTP/1.1\r\nHost: kit.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://elderly-natural-sing.glitch.me\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://elderly-natural-sing.glitch.me/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 10 Jul 2024 12:01:41 GMT\r\ncontent-type: text/javascript\r\naccess-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 3000\r\ncache-control: max-age=60, public, stale-while-revalidate=30\r\nvary: origin, accept-encoding, access-control-request-headers, access-control-request-method\r\nx-request-id: F-DYPCsq7YMaHQ15a9Bi\r\ncf-cache-status: REVALIDATED\r\nserver: cloudflare\r\ncf-ray: 8a10668bab61b515-OSL\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12826,"size_decoded":12826,"mime_type":"text/javascript","magic":"gzip compressed data, from Unix","md5":"61be557ba6ebb603184be9973f38e85a","sha1":"d1d3ef144ae246c8dfd729b7644fd7be06a44129","sha256":"c8e00783181baa9ab617288d90bf5fb5db2f5b20a1d053ddd27a00cee78d46d2","sha512":"2068eb6cc34530452ee0288cdca2211a538401f2c8ded1768bd442f97c33efaa62b0a9740dfecb37e3cf681f39f0d6e9234b91a63a60ad05d30105a432815d7f","ssdeep":"384:31Dxtq/YCVD8u95dFzEEKfJ+kN/tRl2IyTt7w3Dxn:s/EuvzEEKxHdyTODxn","tlshash":"6342c00ce3f679f6f51437beb1e026f5af1051eca02b46461548b956172f861aa07a0d","first_seen":"2024-08-19T17:23:09.817376Z","last_seen":"2024-08-19T17:23:09.817376Z","times_seen":1,"resource_available":false,"data":null}},"time_used":205,"timings":{"blocked":11,"dns":0,"connect":1,"send":0,"wait":176,"receive":0,"ssl":15},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"elderly-natural-sing.glitch.me/","fqdn":"elderly-natural-sing.glitch.me","domain":"elderly-natural-sing.glitch.me","tld":"glitch.me"},"ip":{"addr":"44.193.58.75","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-07-10T12:01:41.026Z","timestamp":1720612901026,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"glitch.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Mon, 04 Dec 2023 00:00:00 GMT","end":"Wed, 01 Jan 2025 23:59:59 GMT"},"fingerprint":{"sha1":"57:4F:13:8A:33:42:32:7C:F7:C9:C5:1F:DF:C1:35:65:F0:E9:70:EE","sha256":"F5:07:BA:D8:42:4E:CA:E7:04:54:EF:FB:81:1F:5F:12:B4:C2:9B:4B:F5:8B:E3:70:A6:8F:19:F7:E7:DD:20:71"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: elderly-natural-sing.glitch.me\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://inodive.us/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 10 Jul 2024 12:01:41 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 82529\r\nx-amz-id-2: cqg+vMdFi/xYYE9/5rbLgG09H+JxN6bDy6k0pUQhhY6J+dPOVVEUAT1rM0cSwlkHgeaK8hesAJ35z2nKCWptEBIMjX5IpSMM\r\nx-amz-request-id: P60WXK907X9Z9HEP\r\nlast-modified: Tue, 09 Jul 2024 15:59:01 GMT\r\netag: \"d44ae5223e70c5edad69e18e08891303\"\r\nx-amz-server-side-encryption: AES256\r\ncache-control: no-cache\r\nx-amz-version-id: 8b3VbRfCWJYlN8mUlpM0T3JXMW3yAnTz\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":82529,"size_decoded":82529,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65500)","md5":"d44ae5223e70c5edad69e18e08891303","sha1":"e3dfed10f5f3d56f0cd03a4b6c332dab0a318b86","sha256":"f0f3a38d85f5db4687da40b9c1e8fd1fba14a924a95f284341b7f54f928d34eb","sha512":"280301449c46813f110b8fe82897fe8e24116f62e489de9a32d67ceb3156be186a5831036d6a28a05db4d2385c9b23c69e34fea8c644daff14b8fadf0d1968a2","ssdeep":"768:878P1IkL6NkSHbKVRb0Pt+tXtWatljmkYga4Anx1Lr2rS0HYVWcRS2/z:hdIkL6NkqX","tlshash":"f083153cf8e8906b9016122bbf3d7789ac107c06bc9a66c5742879516fd1c7b7b601be","first_seen":"2024-07-09T21:11:57Z","last_seen":"2024-08-19T17:28:00.818507Z","times_seen":53,"resource_available":false,"data":null}},"time_used":940,"timings":{"blocked":305,"dns":11,"connect":94,"send":0,"wait":136,"receive":191,"ssl":200},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft Outlook","verdict":"phishing","severity":"medium","comment":"","tags":["phishing","microsoft","outlook"],"meta":null}]}},{"url":{"schema":"https","addr":"logo.clearbit.com/inbox.com","fqdn":"logo.clearbit.com","domain":"clearbit.com","tld":"com"},"ip":{"addr":"54.240.174.123","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://elderly-natural-sing.glitch.me/#exemple@exemple.com","date":"2024-07-10T12:01:41.704Z","timestamp":1720612901704,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"clearbit.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M03","organization":"Amazon"},"validity":{"start":"Mon, 22 Jan 2024 00:00:00 GMT","end":"Tue, 18 Feb 2025 23:59:59 GMT"},"fingerprint":{"sha1":"CE:16:94:BB:21:1F:D1:5C:C5:B1:B0:D0:51:6C:C5:26:30:0D:59:72","sha256":"D3:49:0C:0D:B2:1F:D1:DC:15:AD:B0:C4:87:3D:44:DF:6F:B9:83:1E:7D:C7:5E:69:31:B3:EB:15:DB:CE:32:21"}}},"request":{"raw":"GET /inbox.com HTTP/1.1\r\nHost: logo.clearbit.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://elderly-natural-sing.glitch.me/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=2592000\r\ndate: Wed, 26 Jun 2024 04:30:17 GMT\r\nx-envoy-response-flags: -\r\nserver: Clearbit\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nx-amz-cf-id: vFxhq8AWE01v6708Mkc30ZRxvCx_Z4ZpxLAh4MznpEtTKCpgPrJmZQ==\r\nage: 1236683\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3487,"size_decoded":3487,"mime_type":"image/png","magic":"PNG image data, 128 x 34, 8-bit/color RGBA, non-interlaced","md5":"a4f2c54a52c942c8431fe192e201c65a","sha1":"e7f8a33204cc5d41ad9d2ee4dafb96026acb2a44","sha256":"d6a9a5e080fcfdf1a944b08718ad594b0af0e47b710fc99080cbdafca8e8f39e","sha512":"c81d767f8b67177dc4d7f0caaf20a2d56d8f9fc814990826dfc6bb2293e0bd73098c0614e9229ca136c2530d5eb5099696945d0517a664e0939121eae3f2b0e6","ssdeep":"","tlshash":"95716dce377b488900fd622bd4856615d05ed812a370494f1b4c8474931ab367d6ab8b","first_seen":"2024-01-14T10:56:08Z","last_seen":"2025-06-01T12:31:53.249588Z","times_seen":587,"resource_available":false,"data":null}},"time_used":175,"timings":{"blocked":86,"dns":79,"connect":1,"send":0,"wait":1,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ka-f.fontawesome.com/releases/v6.5.2/css/free.min.css?token=f6136e9b49","fqdn":"ka-f.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.67.139.119","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://elderly-natural-sing.glitch.me/#exemple@exemple.com","date":"2024-07-10T12:01:41.939Z","timestamp":1720612901939,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ka-f.fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 01 Jul 2024 12:54:00 GMT","end":"Sun, 29 Sep 2024 12:53:59 GMT"},"fingerprint":{"sha1":"6D:72:F5:B4:68:5B:A6:B0:2B:E9:FE:83:27:B3:F4:90:E8:F3:E9:0A","sha256":"7F:01:AB:AB:CA:FB:15:54:06:47:4F:52:12:B1:CE:88:BD:6C:21:A3:F2:40:F8:7B:52:60:91:FE:80:AC:DF:B2"}}},"request":{"raw":"GET /releases/v6.5.2/css/free.min.css?token=f6136e9b49 HTTP/1.1\r\nHost: ka-f.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://elderly-natural-sing.glitch.me/\r\nOrigin: https://elderly-natural-sing.glitch.me\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 10 Jul 2024 12:01:42 GMT\r\ncontent-type: text/css\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nlast-modified: Tue, 02 Apr 2024 15:26:25 GMT\r\netag: W/\"7f29cd8c97789aa298af8c61623ca28b\"\r\nx-amz-server-side-encryption: AES256\r\ncache-control: max-age=31556926\r\naccess-control-allow-headers: fa-kit-token\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: uEJJ4xDHAKAgJwmnU34oEpMEEED4ZslguxT9WTk6WPzjS4pqZRw59A==\r\nage: 60616\r\ncf-cache-status: HIT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=QDxzSRUpvDozjysc1Os3FUpgddlkf%2B9BoW21ba92oDD4MGbBvruQHi3mB%2FpqnHMh%2FJC4MJnf84WLG2UA%2F%2F%2BZwSwc6dm28A%2FtPRyTUCxk2mfRLCMt2ycP%2F4ziPH5t3v9%2F6gAnzSUsjg%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8a10668d881e56a9-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":103541,"size_decoded":103541,"mime_type":"text/css","magic":"ASCII text, with very long lines (65321)","md5":"7f29cd8c97789aa298af8c61623ca28b","sha1":"af8109e0e5c8bb2c1c3ab44ba7b5d25900ca454a","sha256":"3e9c73fa687cd4110688668977a7caa87f5a1dee0d11f03687bd4871deedf1c1","sha512":"4255fdab45a4800f205b3f4ce6bc181be4717b380531884c7be1ddea071101976cef0146f66e06a25b63b8d27b0e6e61f48a20cf929b3e8cbec28ad52be7421f","ssdeep":"1536:tFMCMPMCMjMCM4MCMwMCM3sVMn709gbQZMfjSFOlyPG9xXgRM0g:q709gUGGFwyPG9xwRM0g","tlshash":"b9a3a7f9e44c05d97732c44bab95b37c65b6f738d5810ca9f02f580c1ad26a822c6f7a","first_seen":"2024-04-02T20:16:17Z","last_seen":"2026-05-03T13:12:53.761558Z","times_seen":1505,"resource_available":false,"data":null}},"time_used":155,"timings":{"blocked":70,"dns":1,"connect":1,"send":0,"wait":15,"receive":0,"ssl":64},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-shims.min.css?token=f6136e9b49","fqdn":"ka-f.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.67.139.119","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://elderly-natural-sing.glitch.me/#exemple@exemple.com","date":"2024-07-10T12:01:41.943Z","timestamp":1720612901943,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ka-f.fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 01 Jul 2024 12:54:00 GMT","end":"Sun, 29 Sep 2024 12:53:59 GMT"},"fingerprint":{"sha1":"6D:72:F5:B4:68:5B:A6:B0:2B:E9:FE:83:27:B3:F4:90:E8:F3:E9:0A","sha256":"7F:01:AB:AB:CA:FB:15:54:06:47:4F:52:12:B1:CE:88:BD:6C:21:A3:F2:40:F8:7B:52:60:91:FE:80:AC:DF:B2"}}},"request":{"raw":"GET /releases/v6.5.2/css/free-v4-shims.min.css?token=f6136e9b49 HTTP/1.1\r\nHost: ka-f.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://elderly-natural-sing.glitch.me/\r\nOrigin: https://elderly-natural-sing.glitch.me\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 10 Jul 2024 12:01:42 GMT\r\ncontent-type: text/css\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nlast-modified: Tue, 02 Apr 2024 15:26:25 GMT\r\netag: W/\"940b066040a876fa1dc7b2ee2d222a58\"\r\nx-amz-server-side-encryption: AES256\r\ncache-control: max-age=31556926\r\naccess-control-allow-headers: fa-kit-token\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: wCuCRxre3KOlnJrWxRIxxOXEn5eXeO6nPRUbpnnpsOVOwAMI1BzD7w==\r\nage: 60616\r\ncf-cache-status: HIT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=Co%2BhU3HqEGKlsTBtuFUVYgYpBvvjGnIjmERMin6l%2FijBXWonHuRidvuSPf9oJp1Cn11FqVVoa1Ece9siwp50p5rnjGM30PcC41M6mjF6p%2BvKtTA2JxNAtrJL5ZnnWdgX8Exa1%2BcbCA%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8a10668d983956a9-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":27592,"size_decoded":27592,"mime_type":"text/css","magic":"ASCII text, with very long lines (27377)","md5":"940b066040a876fa1dc7b2ee2d222a58","sha1":"64b2aea0b4d60d879d4ff7540192a906ffc0fd92","sha256":"f4e953827930889e844103c3a6771bd2e9de17d091b36378c40362271858e075","sha512":"807a008df398c322188ae41ef8340775dad7851e6d5f09266e728d4a7294302aee5be51a772695b75204c747ccd7dcea5b7eb56db7ff129b62303f03cdbf93f1","ssdeep":"384:tuwu4Eyfd7PNRzAmReUtPAM0NuzwpmnWt:tTuqdNReUtPAM0v4E","tlshash":"97c20569931da0e3b3a8e847bb0172e8277577999a864c50f30b7c4c5dc3a5772e8f18","first_seen":"2024-04-02T20:16:17Z","last_seen":"2026-05-03T13:12:53.738053Z","times_seen":1455,"resource_available":false,"data":null}},"time_used":153,"timings":{"blocked":72,"dns":4,"connect":1,"send":0,"wait":8,"receive":0,"ssl":63},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ka-f.fontawesome.com/releases/v6.5.2/css/free-v5-font-face.min.css?token=f6136e9b49","fqdn":"ka-f.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.67.139.119","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://elderly-natural-sing.glitch.me/#exemple@exemple.com","date":"2024-07-10T12:01:41.946Z","timestamp":1720612901946,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ka-f.fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 01 Jul 2024 12:54:00 GMT","end":"Sun, 29 Sep 2024 12:53:59 GMT"},"fingerprint":{"sha1":"6D:72:F5:B4:68:5B:A6:B0:2B:E9:FE:83:27:B3:F4:90:E8:F3:E9:0A","sha256":"7F:01:AB:AB:CA:FB:15:54:06:47:4F:52:12:B1:CE:88:BD:6C:21:A3:F2:40:F8:7B:52:60:91:FE:80:AC:DF:B2"}}},"request":{"raw":"GET /releases/v6.5.2/css/free-v5-font-face.min.css?token=f6136e9b49 HTTP/1.1\r\nHost: ka-f.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://elderly-natural-sing.glitch.me/\r\nOrigin: https://elderly-natural-sing.glitch.me\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 10 Jul 2024 12:01:42 GMT\r\ncontent-type: text/css\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nlast-modified: Tue, 02 Apr 2024 15:26:25 GMT\r\netag: W/\"a3d53e21a02e37af6cbc00ac63b3cc1e\"\r\nx-amz-server-side-encryption: AES256\r\ncache-control: max-age=31556926\r\naccess-control-allow-headers: fa-kit-token\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: py556Y_Vt8gVeK79RRTQpepcOoAZY6m1NW2nXWn3Tsf7p6YSFifXjQ==\r\nage: 60616\r\ncf-cache-status: HIT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=hJBsE%2B3WamMvidIH02oI2Enk1Puxg98BDZunpcd0KteMvyiQUJK2%2FKIcIeMfVarz7fF86WUJC3WCfRbqAgGOqMR9fmhYQ48P4D88H%2FLWommsXT88EKK8jwD%2FL109kgQD5%2Fb0Khsk1Q%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8a10668d983a56a9-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":823,"size_decoded":823,"mime_type":"text/css","magic":"ASCII text, with very long lines (845), with no line terminators","md5":"d8a0274a5097af25642c9310d6d4bb3e","sha1":"61512d739400e60d9360863446eaf008395859fb","sha256":"84f5ae05668bcfe4bd7447d5035e909686423e998d8dfc2c96789875ef78cdd3","sha512":"c7cf2889432b8ddd8919dc977c3618c7b91acea9d62dd8fd93ebd5ddde112596326af046de9ebc2336cdc6072dcf388635f6ed973f1fc278786b0b76dc1725ca","ssdeep":"","tlshash":"7201486c86a910214d410f0134cab609bd49b0a728ea6eb2911bd92d8cfad0b73f5f06","first_seen":"2024-04-02T20:16:17Z","last_seen":"2025-03-30T10:29:20.613293Z","times_seen":1234,"resource_available":false,"data":null}},"time_used":150,"timings":{"blocked":71,"dns":1,"connect":1,"send":0,"wait":8,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-font-face.min.css?token=f6136e9b49","fqdn":"ka-f.fontawesome.com","domain":"fontawesome.com","tld":"com"},"ip":{"addr":"172.67.139.119","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://elderly-natural-sing.glitch.me/#exemple@exemple.com","date":"2024-07-10T12:01:41.950Z","timestamp":1720612901950,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ka-f.fontawesome.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 01 Jul 2024 12:54:00 GMT","end":"Sun, 29 Sep 2024 12:53:59 GMT"},"fingerprint":{"sha1":"6D:72:F5:B4:68:5B:A6:B0:2B:E9:FE:83:27:B3:F4:90:E8:F3:E9:0A","sha256":"7F:01:AB:AB:CA:FB:15:54:06:47:4F:52:12:B1:CE:88:BD:6C:21:A3:F2:40:F8:7B:52:60:91:FE:80:AC:DF:B2"}}},"request":{"raw":"GET /releases/v6.5.2/css/free-v4-font-face.min.css?token=f6136e9b49 HTTP/1.1\r\nHost: ka-f.fontawesome.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://elderly-natural-sing.glitch.me/\r\nOrigin: https://elderly-natural-sing.glitch.me\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 10 Jul 2024 12:01:42 GMT\r\ncontent-type: text/css\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-max-age: 3000\r\nlast-modified: Tue, 02 Apr 2024 15:26:25 GMT\r\netag: W/\"9c9f596493867f0e7ef5f9fe99103fce\"\r\nx-amz-server-side-encryption: AES256\r\ncache-control: max-age=31556926\r\naccess-control-allow-headers: fa-kit-token\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: _qgb_fDqeBGHYP6PiALe7E_k8CaZxKpTH9j71FgfUM5-usQfIpFp_A==\r\nage: 60616\r\ncf-cache-status: HIT\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=rbpWE9DIK0%2FMWfD%2FbgsvabX%2B%2F5kuOgO4S9HxK%2BGCeXjZ1VjkvgUZ8UFacHuM3BwOblA17du2zGiY78BwV9hydtf7Dx5ztwvwlDQ9TpyfqS1KDfrHIoLIQtDY3hNxh1stS2rN29jMCw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8a10668d983c56a9-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1775,"size_decoded":1775,"mime_type":"text/css","magic":"ASCII text, with very long lines (1803), with no line terminators","md5":"36f549800bc029aaadd0d7ac3d1d0f54","sha1":"45bfcbb57c0155a2f22a47117deae6dc87706d4a","sha256":"4048a832df1b9ac88058b1964ab9c45300daf6c10b0a02d697a29d729a81ea30","sha512":"02d04c7b5f9951a54e218f220c1ccaa4f919ea1fe4912827dd05ffff19a1a73740cfa194adc5f33585afc9c08ea73a9ecc638c180ebcc71c48813dac7312bacd","ssdeep":"","tlshash":"2331122487d90170b4313f097ac67120feae70a75bf96e63c62e99090cfec55b3c6a44","first_seen":"2024-04-03T06:06:53Z","last_seen":"2025-03-30T10:29:20.611595Z","times_seen":1225,"resource_available":false,"data":null}},"time_used":149,"timings":{"blocked":68,"dns":1,"connect":1,"send":0,"wait":9,"receive":0,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}