{"report_id":"5bd02596-a5cd-4b04-b997-76ee538fe196","version":6,"status":"done","tags":["dhl","logistics","phishing","suspicious"],"date":"2023-12-05T08:40:39Z","url":{"schema":"http","addr":"package.dittugarments.com/public/53rv2RGKaT3NloAydNuXFz2f7XXdS6AG","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":0,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"final":{"url":{"schema":"https","addr":"package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"title":"Delivery"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T09:02:57Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"code.jquery.com","ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2005-12-10","domain_rank":634,"first_seen":"2012-05-21 19:28:02","last_seen":"2023-12-05 05:09:20","alert_count":0,"request_count":2,"received_data":68650,"sent_data":878,"comment":"","tags":null,"fingerprints":null},{"fqdn":"ws-mt1.pusher.com","ip":{"addr":"3.82.167.91","port":0,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"domain_registered":"1997-06-03","domain_rank":8253,"first_seen":"2018-09-20 13:30:02","last_seen":"2023-12-04 01:42:45","alert_count":0,"request_count":4,"received_data":1068,"sent_data":2544,"comment":"","tags":null,"fingerprints":null},{"fqdn":"sockjs-mt1.pusher.com","ip":{"addr":"34.201.239.212","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"domain_registered":"1997-06-03","domain_rank":21675,"first_seen":"2015-11-25 16:29:46","last_seen":"2023-12-04 03:29:36","alert_count":0,"request_count":2,"received_data":894,"sent_data":1313,"comment":"","tags":null,"fingerprints":null},{"fqdn":"dispatching-centre.lasamericascargo.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2000-05-05","domain_rank":0,"first_seen":"2022-04-06 21:56:33","last_seen":"2023-12-04 18:18:59","alert_count":0,"request_count":1,"received_data":0,"sent_data":473,"comment":"","tags":null,"fingerprints":null},{"fqdn":"package.dittugarments.com","ip":{"addr":"167.114.30.172","port":0,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"domain_registered":"2022-10-20","domain_rank":0,"first_seen":"2023-11-21 10:22:39","last_seen":"2023-12-05 09:39:37","alert_count":22,"request_count":23,"received_data":3277040,"sent_data":27470,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-05-16","domain_rank":439,"first_seen":"2012-09-30 02:15:09","last_seen":"2023-12-05 05:10:30","alert_count":0,"request_count":3,"received_data":2225,"sent_data":1414,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":235,"first_seen":"2015-04-17 22:46:33","last_seen":"2023-12-05 05:09:58","alert_count":0,"request_count":5,"received_data":720389,"sent_data":2336,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.s-pass.org","ip":{"addr":"104.26.11.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2011-10-25","domain_rank":0,"first_seen":"2022-06-08 13:11:38","last_seen":"2023-12-04 12:18:23","alert_count":1,"request_count":1,"received_data":5850,"sent_data":559,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.lr-in.com","ip":{"addr":"104.21.234.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2021-07-19","domain_rank":13237,"first_seen":"2021-07-19 16:36:56","last_seen":"2023-12-03 03:53:51","alert_count":0,"request_count":1,"received_data":167963,"sent_data":425,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":8877,"first_seen":"2013-06-10 22:14:26","last_seen":"2023-12-05 07:37:50","alert_count":0,"request_count":1,"received_data":38061,"sent_data":487,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":[{"sensor_name":"openphish","sensor_type":"url","title":"","description":"OpenPhish","scan_date":"2023-11-30","alert":"DHL Airways, Inc.","trigger":"package.dittugarments.com/public/53rv2RGKaT3NloAydNuXFz2f7XXdS6AG","verdict":"phishing","severity":"medium","comment":"DHL Airways, Inc.","link":"https://openphish.com","meta":null},{"sensor_name":"openphish","sensor_type":"url","title":"","description":"OpenPhish","scan_date":"2023-11-21","alert":"DHL Airways, Inc.","trigger":"package.dittugarments.com/public","verdict":"phishing","severity":"medium","comment":"DHL Airways, Inc.","link":"https://openphish.com","meta":null}]},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null},{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"code.jquery.com/jquery-1.12.4.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4f252523d4af0b478c810c2547a63e19","sha1":"5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb","sha256":"668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404","sha512":"8c6b0c1fcde829ef5ab02a643959019d4ac30d3a7cc25f9a7640760fefff26d9713b84ab2e825d85b3b2b08150265a10143f82e05975accb10645efa26357479","ssdeep":"1536:GYE1JVoiB9JqZdXXe2pD3PgoIiulrUdTJSFk/zkZ4HjL5o8srOaS9TwD6b7/Jp9i:t4J+R3jL5TCOauTwD6FdnCVQNea98HrV","tlshash":"8893d7d9b6d6706287b734a851bf410bb17aa8eab40c4c60f058c8e47e74e9d507bf2d","size":97163,"data":"","first_seen":"2023-03-07T01:02:06Z","last_seen":"2026-05-11T16:02:45.157729Z","times_seen":74889,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/app.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":false,"md5":"508afd6ff9ab52ce8f480d35568038d1","sha1":"b5d9891100e0dce59cee59b75a098a1ae64c779b","sha256":"8af18273c1833477cf810c4e3a76f483b6a6064571d25ea7742d8708378c8f09","sha512":"7bd1a63f11dfa4845faae777928a11aa6211672a5d3b769a7b7f972e78a0f1ce5a63f86b066e30d58565b26f79b11516fc5364f0f8cefd8b2793e1a2d2858e4a","ssdeep":"24576:Y+P88Ns8KHcY0tbZwi+qEbA5bAKalw19a1abAeXT1wCUizMjIQ37QHtLIYAMd7n:Y+P88NsbcY0tbZwi+qEbA5bAKalw19aI","tlshash":"ba158456b391b7269172f06c589abc8de62d9ad79049484e31fdc3dc0f39870827ee6c","size":920095,"data":"","first_seen":"2023-03-08T14:22:25Z","last_seen":"2024-11-26T00:24:15.850363Z","times_seen":3375,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.lr-in.com/logger-1.min.js","fqdn":"cdn.lr-in.com","domain":"lr-in.com","tld":"com"},"ip":{"addr":"104.21.234.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"be415574a856fccce77a0105716c4682","sha1":"6971ee2bf3d96c8965e9361339447325542b7f3c","sha256":"bcdc0d636aea1e1f941d9761c2b14f56c305a8423b7a344d9f183e83e180c386","sha512":"3a1bcfcbd36ab2f98929a9462d8d3d8c7950551f5e79d6fd31d65f9081952a56665bc9c9a460a6a78377af103c38c0c84a26fa8f34e5e60d3df914f61455687d","ssdeep":"24576:Fb9umHCXMY0xz8Sx2bFAvPMefgL1fGVTxtt7vpe1xaMyWase7EIwhXEjKbZDb1I3:Z9umHCIz8Sx2bFAvPMefgRfGVTxtt7vl","tlshash":"39051a883999f05203eb90e9103f2407f239591d546de0e0f3a6d9d6e8bd68e6177f3a","size":846393,"data":"","first_seen":"2023-12-05T00:19:00Z","last_seen":"2023-12-05T17:11:32Z","times_seen":15,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/imask/3.4.0/imask.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"79c82646b886e08184f7b9fff25e64ff","sha1":"804b4b0f8f3443ff05833e33fb5b76780ffafe25","sha256":"8b76b3502583edddf22df0b9c6ee640053a2cdfeaa113ceff3ea9b61d1f6410d","sha512":"97caf35f6666149f42d615488e113902833dbf5393714ffa014b513966c65393b4ec7ad10b2edb24c17e5db4ec6745e66329badcf6ce36cffbec2b1b2d0d3ebb","ssdeep":"768:mCrttI4hZ8f0FQBUmr3ujTd5Xei7k08LH:mC39CWQBUBTd5XeiB8LH","tlshash":"81238794f2d3b0618ba26068083b230be3777a9964c4c18cf639d9d56e79e496077f3d","size":45591,"data":"","first_seen":"2023-03-07T01:07:12Z","last_seen":"2026-05-11T09:46:15.347493Z","times_seen":4620,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/intlTelInput.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":false,"md5":"9146aa46d1f409004183b86f202c4607","sha1":"717a6d53527fe31ec1c4eef9022b06e5d4d6f6a5","sha256":"b188900aaff98a87fc69519ab04437aa735708b4b92f2adcab6937d2a1d42e37","sha512":"ffdafadbda6196b87917046c9ba4032f881bab67f776fd272c36ed169a21dd7c8063b60c7ae9a5f63e2b9485c1ff5a27649ec6d4dddccdea699b259d46f4613f","ssdeep":"768:9V8Uwh111u9NSIulPDvm7gI1zDvNxGYtWfW//WQUrlYMmbc5f9kMbRo9TXH6H+WT:I3wTgWNJtt/WhrlYMPfvoxg+WdWcFSdW","tlshash":"cc93c51ea7e703279cb3e16a6faf504e626845174606cc143c9c97c81f8e86587f6bf8","size":89336,"data":"","first_seen":"2023-03-08T14:22:25Z","last_seen":"2026-05-08T21:34:31.01459Z","times_seen":3718,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":true,"md5":"4650ef73be9884bdea100c5f58eb3ce0","sha1":"0604200a9b4548990be2b6bddd564b755f41853d","sha256":"ea625b24a834457af4291263a5886ef3b7967ddd661aa1b111aefe454a948ab8","sha512":"af0fc8897877f8e5acd80d838bd1a2ca2cf31f5edec32dbf869180c4d16083432338b96278d2fd87dcfb882c6fb2123eae68439ce74761f3d838d05455c58ea4","ssdeep":"","tlshash":"dcd023cf30481c015c30649511520448d1255053f67dd0d1f9de771c3f521518457dc5","size":248,"data":"","first_seen":"2023-03-13T17:37:25Z","last_seen":"2024-11-26T00:24:15.856479Z","times_seen":1294,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/countrySelect.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":false,"md5":"ee3d5d4880b5dac09d9ca3c23cdd28da","sha1":"f95728f89723a079442d67ed6aa38abf8ecab4fd","sha256":"657baddf2724ae4570fa40c00dddefa3379b5709ac06ceb536f6177a1bfc394f","sha512":"069739228d95dec65fd749e46c701f8a1f55265c5b8f5201705bcd5c8672dd106ebb15db9e75fc7ec92c12e67a2c9fcfd461618a717e1d4870e8122b1ad7830a","ssdeep":"768:vECwQsZMAky39D6uKip6WjDKYUcLxu585DvNSoB59j:vERQsZMAkm95Kip6WPHn45mpl","tlshash":"10f21fdad78d0f6aa4f1e36d2d7d00cb4a2d4125cd00899f3cbb929c2ca585cd925a7b","size":36634,"data":"","first_seen":"2023-03-08T14:22:25Z","last_seen":"2026-05-06T05:40:59.671047Z","times_seen":3472,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":true,"md5":"7cf8a70ac935f1298d214088686cbbd0","sha1":"fb3fc1edd4d51610f91a34e441bc619fb81f0754","sha256":"324c26451bcbce9543b7ee79fcf2034909c9e6d20aec307cd0c098f7e79f3096","sha512":"b89d4b3d193b66da602b03b45da5acd4e589826b239647a844e296de426dd234acb813158d23926c10758e51049abfc3d35c9bee94f3f4472c0a996254383206","ssdeep":"","tlshash":"b0a022b200020a338020a02c0b0ae0002c23022f0230f0b83a2cc2022bb2c03c2fcc02","size":86,"data":"","first_seen":"2024-08-20T16:43:15.120247Z","last_seen":"2024-08-20T16:43:15.120247Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/card.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":false,"md5":"30e93a747ba8285615cfbc3643dc1a62","sha1":"3a55f9d6ac708f519d351ea0b69083457778ec9d","sha256":"18c4b9b4c27233b541a47300a4ee98239e1f8dec4bbcd9fabb6bdad12ca82025","sha512":"9487532066928c5592c665834b229b2f3d4e277735a38566e855d182e287d47cce54245217c629837d3eca06bb8f94d4321e127f9885bc2f7f35042bd4aba642","ssdeep":"768:CGYeJShtejcjhtA0bhtsslHopQr67fgXkO0LrasW7FUmBi:tyTjhxbh7HFdk1JvmBi","tlshash":"2543b469f082e0bde223856a10db5bce727dca17d607056cf263b0dd6e52bcd9169b0c","size":58666,"data":"","first_seen":"2023-03-07T12:24:57Z","last_seen":"2025-11-16T04:10:40.74186Z","times_seen":3423,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.1/js/all.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"61008443488f4e7f60d5a5055483187e","sha1":"b56375acc5e062f79280440459d0d7b0f10a290b","sha256":"1d3f596f76f53d53ef7cb1ffeffd6f791b54bd639b42e4f23e7f2d7b36f91c48","sha512":"8c0bbaea9a87596439eb8352fa6d99c5ed7761e93df11ec958d8d02f35be3d0e22da3b0cc414f59c6ad0d2015421527890f90415ee607a50563440d306a9a7ff","ssdeep":"6144:NDomTu5rnQjs2mDVJ4xacbMV2Dnio/NULootRtKe2/jyG6LeL+FJ1GSnbJS8wDKe:Xu5rnMbMptRwXyG6RXa","tlshash":"2535d468d764a3bc9d8687b5c6212074798f91be71e09328d2bcc6f0b2675dcd2c9cc9","size":1123785,"data":"","first_seen":"2023-03-07T14:50:19Z","last_seen":"2026-05-11T02:08:02.083095Z","times_seen":3523,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/data.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":false,"md5":"a2b78e86240966cda00a463614e4f3dd","sha1":"a2606f30f77bb9f235746059db16b0ee8b585c31","sha256":"55e47db856701715f613de8674bd0c67604cc304514b791bed402866d18c8557","sha512":"baddcf228f49de0809cb84c7e26b3b27944530e0913184362aaf1f29501f6dc1007de8c9bfdc9c4b1d9525cb744afb06cddac37036e7f4e5b6cc806f6cc543fb","ssdeep":"192:jcq8EQsaV8Uac8h7yeL1gS1ZdlJlBy3TTJpYW0JK2EeiNN0JtAavY+XTI0RFFg36:WsaV8Uwhrp11Z89yJM3IJtAavnDI0RF5","tlshash":"f242c539ba27152b08f6cc495c84178ea7044f30237bdd06768e3fa94b8f816a7576ad","size":12100,"data":"","first_seen":"2023-03-08T14:22:25Z","last_seen":"2024-11-26T00:24:15.847489Z","times_seen":3385,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":true,"md5":"1cfd41806ce319f7e19ad8f976e039a0","sha1":"5fe5871ed4c3dc818cc911fec6a8afd06fbc7931","sha256":"7c6a0f51b17d5006f90db0c90713cb6a3ce661ee5ebe319b003fcdebf05a9b1b","sha512":"ec4bf80503bc1754e16d9490d25281be4c4a1e0c2197c1974452f3c2dc035fa3b876e6963a0ddd754f50c553805dbc3cdcc1054bf083991805a4336ce1507139","ssdeep":"","tlshash":"3031d11cf4a58622ac33713d7bbfe60a1a6d02075e44e9517c4d07842f9419f99b26ef","size":1832,"data":"","first_seen":"2023-11-21T18:36:18Z","last_seen":"2024-08-20T18:26:59.922871Z","times_seen":931,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":true,"md5":"e1784cbe55975edfe3edc273d04e6427","sha1":"8e4aeb9d5897da9a00f6c3d1b3020f0838bcdead","sha256":"3af742559ea4b2e491eb2f5bbd4dea73e6f5e0676470eb72dfd1aa13abd134f8","sha512":"95fa247f40a70f333c63a649c3a469730a1d2b81b09a5404a251cfba00084aaa40409043d1ed3325c8d08437660390a43610985556d0e0ebdab9dacb5be81052","ssdeep":"","tlshash":"8011f71cf8a68b00a573703e2ebf84191e6d060f2505cf50b89c0fd85f90057eca26ae","size":866,"data":"","first_seen":"2023-03-13T17:37:30Z","last_seen":"2024-08-21T03:49:27.031609Z","times_seen":1266,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"package.dittugarments.com/public/53rv2RGKaT3NloAydNuXFz2f7XXdS6AG","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":0,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-05T08:40:24.90227078Z","timestamp":1701765624902,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET /public/53rv2RGKaT3NloAydNuXFz2f7XXdS6AG HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 302 Found\r\nDate: Tue, 05 Dec 2023 08:40:19 GMT\r\nServer: Apache\r\nCache-Control: no-cache, private\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6IjJkM1dMVGFzQ0VsV0lGbTJoMlVjV2c9PSIsInZhbHVlIjoiWDN4RithYlNxODhoaENnSnpPYnNqVGtHdjRNMkFGd2tBM1ZLc1IrRi84T1FjSDRhUFNMNU40NkxwN24yZUJ5cDVSMnlaL01qVG5tM3F4a01wWXhKcm4rbnRyd21FR01DZk16T20zNENjM09TRXdQWTFNcEdhaFlZWUZuUkVUaW0iLCJtYWMiOiJmMmI4NmE0M2JmY2ViMzM2NmQ0ZWYyZDBhMGVhMGRlN2VkYjY1Nzg3MzU4YTQyNWJlOWIzNjEzNjA3MDY0YTBmIiwidGFnIjoiIn0%3D; expires=Tue, 05-Dec-2023 10:40:19 GMT; Max-Age=7200; path=/; samesite=lax\nlaravel_session=eyJpdiI6IkRBQnJnUXNqeE5hTWY4Qy9xclFrU3c9PSIsInZhbHVlIjoiQklSc1hkRnp4NG04R2JoSzhHR29hd1g0M09aNVVnd0dhZmU0eXpTU0VZelVqLzIwQUp2WUpQUzhvck52TFl4bm9rbVA2aWlNaXI0c3czYlRBSVNRbk5KU1ZBeTBTcGRWblBoa01EeVRyRUdSQUFBcEt0ZW1JdzU5TitHSk1ydlUiLCJtYWMiOiIyYzBkZmRkNDk5NDIwMjcyYmJiNDMwM2VlYWM2Y2UzNzQxZTg4NmM0ZDdkNzEyODRjOGM3NGJjOTkxYjM4NTc5IiwidGFnIjoiIn0%3D; expires=Tue, 05-Dec-2023 10:40:19 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nLocation: https://package.dittugarments.com/public\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":406,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text","md5":"59f665f4e8b0de50ce9f4d3b3986738e","sha1":"09472b45ea37760858f630988f50d69b1583f445","sha256":"704abe42375f89894e44312a52e5172cdf8e94e26a4a3c6382de1844af07e366","sha512":"b2022c85074fdcaffd151bced270cad0fbd9e0cb25c37dcfedf150a78997d6525813aeb565e1004f802adfc08de4f8825b8ac878fa18fd6cf1b41c5bc39d48f1","ssdeep":"","tlshash":"49e092af02d0260616106a8814c0f87fc99b32bf66da879ab87d11906fa4b964357296","first_seen":"2023-11-21T11:50:11Z","last_seen":"2024-08-20T18:30:10.259651Z","times_seen":1054,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"openphish","sensor_type":"url","title":"","description":"OpenPhish","scan_date":"2023-11-30","alert":"DHL Airways, Inc.","trigger":"package.dittugarments.com/public/53rv2RGKaT3NloAydNuXFz2f7XXdS6AG","verdict":"phishing","severity":"medium","comment":"DHL Airways, Inc.","link":"https://openphish.com","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":0,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-05T08:40:25.040413297Z","timestamp":1701765625040,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET /public HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: XSRF-TOKEN=eyJpdiI6IjJkM1dMVGFzQ0VsV0lGbTJoMlVjV2c9PSIsInZhbHVlIjoiWDN4RithYlNxODhoaENnSnpPYnNqVGtHdjRNMkFGd2tBM1ZLc1IrRi84T1FjSDRhUFNMNU40NkxwN24yZUJ5cDVSMnlaL01qVG5tM3F4a01wWXhKcm4rbnRyd21FR01DZk16T20zNENjM09TRXdQWTFNcEdhaFlZWUZuUkVUaW0iLCJtYWMiOiJmMmI4NmE0M2JmY2ViMzM2NmQ0ZWYyZDBhMGVhMGRlN2VkYjY1Nzg3MzU4YTQyNWJlOWIzNjEzNjA3MDY0YTBmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBQnJnUXNqeE5hTWY4Qy9xclFrU3c9PSIsInZhbHVlIjoiQklSc1hkRnp4NG04R2JoSzhHR29hd1g0M09aNVVnd0dhZmU0eXpTU0VZelVqLzIwQUp2WUpQUzhvck52TFl4bm9rbVA2aWlNaXI0c3czYlRBSVNRbk5KU1ZBeTBTcGRWblBoa01EeVRyRUdSQUFBcEt0ZW1JdzU5TitHSk1ydlUiLCJtYWMiOiIyYzBkZmRkNDk5NDIwMjcyYmJiNDMwM2VlYWM2Y2UzNzQxZTg4NmM0ZDdkNzEyODRjOGM3NGJjOTkxYjM4NTc5IiwidGFnIjoiIn0%3D\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Tue, 05 Dec 2023 08:40:19 GMT\r\nServer: Apache\r\nLocation: https://package.dittugarments.com/public/\r\nContent-Length: 249\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":249,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text","md5":"a8e11bccdd02a57c9f088693a6595edb","sha1":"2e29945d816bf9d4d8f244a8e60f671410098d1d","sha256":"3fd5f6483304c2d479276375ef9ad5d751348bfdb8e188f304b7c79c53388c43","sha512":"0e1d9ffffdf813ff0298e36bb46dd900041b95ad5952f4c1c4c81e90a2a91ffa00285452de8f4b4808bacfccb606c2f7775bd02b5b017e75d40723b741ab5f4c","ssdeep":"","tlshash":"dfd095fd538220c174433b4474c130e2905f107465c645d915fb1844d0185b7484f0dd","first_seen":"2023-11-21T11:50:11Z","last_seen":"2024-08-20T18:30:10.260727Z","times_seen":1055,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"openphish","sensor_type":"url","title":"","description":"OpenPhish","scan_date":"2023-11-21","alert":"DHL Airways, Inc.","trigger":"package.dittugarments.com/public","verdict":"phishing","severity":"medium","comment":"DHL Airways, Inc.","link":"https://openphish.com","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":0,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-05T08:40:26.312874085Z","timestamp":1701765626312,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET /public/ HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: XSRF-TOKEN=eyJpdiI6IjJkM1dMVGFzQ0VsV0lGbTJoMlVjV2c9PSIsInZhbHVlIjoiWDN4RithYlNxODhoaENnSnpPYnNqVGtHdjRNMkFGd2tBM1ZLc1IrRi84T1FjSDRhUFNMNU40NkxwN24yZUJ5cDVSMnlaL01qVG5tM3F4a01wWXhKcm4rbnRyd21FR01DZk16T20zNENjM09TRXdQWTFNcEdhaFlZWUZuUkVUaW0iLCJtYWMiOiJmMmI4NmE0M2JmY2ViMzM2NmQ0ZWYyZDBhMGVhMGRlN2VkYjY1Nzg3MzU4YTQyNWJlOWIzNjEzNjA3MDY0YTBmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBQnJnUXNqeE5hTWY4Qy9xclFrU3c9PSIsInZhbHVlIjoiQklSc1hkRnp4NG04R2JoSzhHR29hd1g0M09aNVVnd0dhZmU0eXpTU0VZelVqLzIwQUp2WUpQUzhvck52TFl4bm9rbVA2aWlNaXI0c3czYlRBSVNRbk5KU1ZBeTBTcGRWblBoa01EeVRyRUdSQUFBcEt0ZW1JdzU5TitHSk1ydlUiLCJtYWMiOiIyYzBkZmRkNDk5NDIwMjcyYmJiNDMwM2VlYWM2Y2UzNzQxZTg4NmM0ZDdkNzEyODRjOGM3NGJjOTkxYjM4NTc5IiwidGFnIjoiIn0%3D\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:20 GMT\r\nServer: Apache\r\nCache-Control: no-cache, private\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6ImYzc1RPdnlEN1A1K09CcXIycnc1dFE9PSIsInZhbHVlIjoiaExqWWhxbG1YOHdtMkRZcXJySlg0QXR5QmZ3WDhGc3BIRUJZUHJ6OGZoSGdnLy9rTWtqV1FtUS9TdHpYMEMzSFlXZWNSamhiRWhyUU0wdTFhT3p3d3dHWmVDbHR1ZWhmVjJqTGZiRzR2dU0ra3MrQmdVYmdCVldzUW0zb2FYblAiLCJtYWMiOiJmMDliODEyMTMyNzIxYzRmN2YzODY4ZTFkZDhhYWViYjFhNWQwMTY0NTJlMmUyNTUwYTI2ODI3OWE2NDA0NWVmIiwidGFnIjoiIn0%3D; expires=Tue, 05-Dec-2023 10:40:20 GMT; Max-Age=7200; path=/; samesite=lax\nlaravel_session=eyJpdiI6Ikx0UlVCUjBJUHUzVkd2dWh0NE5QVmc9PSIsInZhbHVlIjoiOGRDbEdDS3hQK2ttbzJ4ZHltRGdMc1pMRFJLU3FKY3hUVkJsVktXangyNXVKSU1TTmI0RkpHOW5jVjkxd0pxM1lvcldRRFp5SExzRmJaTnVXazFDcldkUzFITVdENUtKSENpQzh1cml3M0p3QzRLQWFzWlA1YXdJZGZrbWM0S0YiLCJtYWMiOiI3MTYzMGNiNzIwYzk0Mzg2NDk1MjQ3OTkzMjViYWY1MzU2NTRkNjU1Mjc2MTQ5YTA2MGY3ZmUzMDNkMzQ3M2I4IiwidGFnIjoiIn0%3D; expires=Tue, 05-Dec-2023 10:40:20 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":544,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document, ASCII text","md5":"d673fa487dfe9237994f76fab5aa2780","sha1":"df9510f51cc734cd2fc0b1c2cfd20aa177f2b926","sha256":"90e1fe2e95bfd09e500415fcb306b96a8badd79db80052addf5998ffd583e7f5","sha512":"b1cff08381b0d5d6503140f45812d782c18bb7d6aa65abda9232c5d66cccf69df909a17b1ec8026b8278aea1861cce066b0465b04494dd3c68582dd6893320bc","ssdeep":"","tlshash":"1df0c0cfac82cc02647014845163f048942390476178e4d0f5edd6283f51b9f8caaec9","first_seen":"2023-12-05T09:40:42Z","last_seen":"2023-12-05T09:40:42Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/gh/killbot-org/Killbot-JS@latest/dist/main.min.js","fqdn":"cdn.jsdelivr.net","domain":"cdn.jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.159Z","timestamp":1701765629159,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2023 Q3","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 27 Sep 2023 18:13:13 GMT","end":"Mon, 28 Oct 2024 18:13:12 GMT"},"fingerprint":{"sha1":"05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09","sha256":"0F:90:CD:B5:CD:3B:AE:F1:BB:01:3A:4D:6D:2E:A6:BA:98:C6:1B:1B:75:BE:DD:CB:39:33:E8:D1:21:F1:9F:EF"}}},"request":{"raw":"GET /gh/killbot-org/Killbot-JS@latest/dist/main.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=600, s-maxage=600\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/plain; charset=utf-8\r\netag: W/\"38-ZuySTw0y37Br8N2hEzvUuISy2D0\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Tue, 05 Dec 2023 08:40:20 GMT\r\nage: 233\r\nx-served-by: cache-fra-etou8220062-FRA, cache-bma1664-BMA\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 55\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":55,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"2ccf42e1d8ce91dc28fc42053a58924f","sha1":"66ec924f0d32dfb06bf0dda1133bd4b884b2d83d","sha256":"51311bb7fe0896738e7bb28de627f8ad47495c61d8840e5921460123484560a5","sha512":"84400cca2de766c18872759e7b52b9e460f9269ab7c39f40bd58edd310e5eb4102b02cc008fb6ed6e149971b4c6ebc0d2ac13ac3c01e86c6d41380d80f8969ba","ssdeep":"","tlshash":"799002e71101c057667a5902d505a0e02b1855541294d1504024e40d75c802d56d94c4","first_seen":"2023-04-09T22:53:28Z","last_seen":"2025-02-26T21:11:38.491012Z","times_seen":3646,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu/","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-05T08:40:26.691Z","timestamp":1701765626691,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu/ HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/\r\nCookie: XSRF-TOKEN=eyJpdiI6ImYzc1RPdnlEN1A1K09CcXIycnc1dFE9PSIsInZhbHVlIjoiaExqWWhxbG1YOHdtMkRZcXJySlg0QXR5QmZ3WDhGc3BIRUJZUHJ6OGZoSGdnLy9rTWtqV1FtUS9TdHpYMEMzSFlXZWNSamhiRWhyUU0wdTFhT3p3d3dHWmVDbHR1ZWhmVjJqTGZiRzR2dU0ra3MrQmdVYmdCVldzUW0zb2FYblAiLCJtYWMiOiJmMDliODEyMTMyNzIxYzRmN2YzODY4ZTFkZDhhYWViYjFhNWQwMTY0NTJlMmUyNTUwYTI2ODI3OWE2NDA0NWVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikx0UlVCUjBJUHUzVkd2dWh0NE5QVmc9PSIsInZhbHVlIjoiOGRDbEdDS3hQK2ttbzJ4ZHltRGdMc1pMRFJLU3FKY3hUVkJsVktXangyNXVKSU1TTmI0RkpHOW5jVjkxd0pxM1lvcldRRFp5SExzRmJaTnVXazFDcldkUzFITVdENUtKSENpQzh1cml3M0p3QzRLQWFzWlA1YXdJZGZrbWM0S0YiLCJtYWMiOiI3MTYzMGNiNzIwYzk0Mzg2NDk1MjQ3OTkzMjViYWY1MzU2NTRkNjU1Mjc2MTQ5YTA2MGY3ZmUzMDNkMzQ3M2I4IiwidGFnIjoiIn0%3D\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Tue, 05 Dec 2023 08:40:20 GMT\r\nServer: Apache\r\nLocation: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nContent-Length: 281\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":281,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text","md5":"7d64b0ef6b04a5821731f2f593f1ee7d","sha1":"77c491ab851a9b1afbbd2eee67b42d06f8bdec97","sha256":"acb3cc921ded1e7eaa06f484c08d8a75e2240987880a436b1f55f365c38b9c8a","sha512":"f86d8a6651b09f2b2f01d8c61b9228d838a6ed1cf3a226f36d9001c5d5412d5005910a646fd53d6a6e001a3024777c56949e02fad18280bfcaf2f00bac73dbf9","ssdeep":"","tlshash":"57d0ebfe438221d234033b4825c120e2a86f11b8a1dad1e91aae2840e0188b78c8e0ca","first_seen":"2023-12-05T09:40:42Z","last_seen":"2023-12-05T09:40:42Z","times_seen":1,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":112,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/gh/killbot-org/Killbot-JS@latest/dist/main.min.js","fqdn":"cdn.jsdelivr.net","domain":"cdn.jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.159Z","timestamp":1701765629159,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2023 Q3","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 27 Sep 2023 18:13:13 GMT","end":"Mon, 28 Oct 2024 18:13:12 GMT"},"fingerprint":{"sha1":"05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09","sha256":"0F:90:CD:B5:CD:3B:AE:F1:BB:01:3A:4D:6D:2E:A6:BA:98:C6:1B:1B:75:BE:DD:CB:39:33:E8:D1:21:F1:9F:EF"}}},"request":{"raw":"GET /gh/killbot-org/Killbot-JS@latest/dist/main.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ncontent-length: 55\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=600, s-maxage=600\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/plain; charset=utf-8\r\netag: W/\"38-ZuySTw0y37Br8N2hEzvUuISy2D0\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Tue, 05 Dec 2023 08:40:23 GMT\r\nage: 236\r\nx-served-by: cache-fra-etou8220062-FRA, cache-bma1647-BMA\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":55,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"2ccf42e1d8ce91dc28fc42053a58924f","sha1":"66ec924f0d32dfb06bf0dda1133bd4b884b2d83d","sha256":"51311bb7fe0896738e7bb28de627f8ad47495c61d8840e5921460123484560a5","sha512":"84400cca2de766c18872759e7b52b9e460f9269ab7c39f40bd58edd310e5eb4102b02cc008fb6ed6e149971b4c6ebc0d2ac13ac3c01e86c6d41380d80f8969ba","ssdeep":"","tlshash":"799002e71101c057667a5902d505a0e02b1855541294d1504024e40d75c802d56d94c4","first_seen":"2023-04-09T22:53:28Z","last_seen":"2025-02-26T21:11:38.491012Z","times_seen":3646,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/css/all.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.161Z","timestamp":1701765629161,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Tue, 02 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D","sha256":"D9:9E:DA:D7:6F:5A:E0:87:16:F3:3E:A0:A8:34:8B:84:B7:B0:98:30:2D:18:D8:53:E6:3C:09:06:19:48:07:54"}}},"request":{"raw":"GET /ajax/libs/font-awesome/6.1.1/css/all.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://package.dittugarments.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 05 Dec 2023 08:40:23 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 17041\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"623a082a-4291\"\r\nlast-modified: Tue, 22 Mar 2022 17:32:26 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 54680\r\nexpires: Sun, 24 Nov 2024 08:40:23 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=tCJWtSfbKRO2p%2FgXRlojZS8h1C4McaOtX2Aa7ZI3owDpUfaWuUmGHSc3sS8xYI3WTlk%2FxKKpWcNvBiun0xky32yyjzpH4P9MX%2F2QupmOryOoKoTvzBSWzQoY%2F1Tkhko%2FQ6IWumub\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\ncf-ray: 830afbe9f8c0b51b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":17041,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65317)","md5":"6386fb409d4a2abc96eee7be8f6d4cc4","sha1":"09102cfc60efb430a25ee97cee9a6a35df6dfc59","sha256":"0df5a33710e433de1f5415b1d47e4130ca7466aee5b81955f1045c4844bbb3ed","sha512":"29f91fc180ec2e4225c10a7a2c59e5f3335d2c6c6ef58000d50bf020d92ce0f85c125412bea73254b2c3f5a3215ddd77b908e85ed10a368b0e59a66a5e07a5d2","ssdeep":"1536:mUMVM6MVMkMVM9MVMNMVMispLudL+P8Wcn0Fwib3ePyUHsE+z:hudL25cn0FfePyUME+z","tlshash":"b3a3b7f5e44c05d97732c44bab95b37c65b6f738d9810ca9f02f580c1ad26a822c6f7a","first_seen":"2023-04-05T03:24:19Z","last_seen":"2026-05-11T15:28:13.092421Z","times_seen":26948,"resource_available":false,"data":null}},"time_used":45,"timings":{"blocked":16,"dns":1,"connect":1,"send":0,"wait":7,"receive":1,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-05T08:40:26.805Z","timestamp":1701765626805,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://package.dittugarments.com/public/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: XSRF-TOKEN=eyJpdiI6ImYzc1RPdnlEN1A1K09CcXIycnc1dFE9PSIsInZhbHVlIjoiaExqWWhxbG1YOHdtMkRZcXJySlg0QXR5QmZ3WDhGc3BIRUJZUHJ6OGZoSGdnLy9rTWtqV1FtUS9TdHpYMEMzSFlXZWNSamhiRWhyUU0wdTFhT3p3d3dHWmVDbHR1ZWhmVjJqTGZiRzR2dU0ra3MrQmdVYmdCVldzUW0zb2FYblAiLCJtYWMiOiJmMDliODEyMTMyNzIxYzRmN2YzODY4ZTFkZDhhYWViYjFhNWQwMTY0NTJlMmUyNTUwYTI2ODI3OWE2NDA0NWVmIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikx0UlVCUjBJUHUzVkd2dWh0NE5QVmc9PSIsInZhbHVlIjoiOGRDbEdDS3hQK2ttbzJ4ZHltRGdMc1pMRFJLU3FKY3hUVkJsVktXangyNXVKSU1TTmI0RkpHOW5jVjkxd0pxM1lvcldRRFp5SExzRmJaTnVXazFDcldkUzFITVdENUtKSENpQzh1cml3M0p3QzRLQWFzWlA1YXdJZGZrbWM0S0YiLCJtYWMiOiI3MTYzMGNiNzIwYzk0Mzg2NDk1MjQ3OTkzMjViYWY1MzU2NTRkNjU1Mjc2MTQ5YTA2MGY3ZmUzMDNkMzQ3M2I4IiwidGFnIjoiIn0%3D\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:23 GMT\r\nServer: Apache\r\nCache-Control: no-cache, private\r\nSet-Cookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; expires=Tue, 05-Dec-2023 10:40:23 GMT; Max-Age=7200; path=/; samesite=lax\nlaravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D; expires=Tue, 05-Dec-2023 10:40:23 GMT; Max-Age=7200; path=/; httponly; samesite=lax\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":22341,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, Unicode text, UTF-8 text","md5":"b5e9283c05743343ecffff2bfdcf975d","sha1":"4d1b28b95b77658805862693ec6e5a587bda3b48","sha256":"1759924e230b4adcb62d44b8b741e801169539d26d1817f61bb14553874a99c9","sha512":"1a6c65d328a9df51fc9e06c764ed1017417cf1f8397323c7c472986f5791eefd7a4faf7238751cd9b24e8d498159e4dd03f99ba36c7c8743fbab5e18a4266178","ssdeep":"384:hC7rr7dw1t0oczIWecpywcyfSzi2CWOPSeubuWuAuFPlUauuuMMgW8zLPSeubuWj:gdKgIcchzPCWOPSe+VzOPBpdBzLPSe+d","tlshash":"84a2642758f0021b046354893a75bb2fad9a901bda0ace4135fc0b996fd1ec7cc1379e","first_seen":"2023-12-05T09:40:42Z","last_seen":"2023-12-05T09:40:42Z","times_seen":1,"resource_available":false,"data":null}},"time_used":2413,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2303,"receive":110,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/imask/3.4.0/imask.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.247Z","timestamp":1701765629247,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Tue, 02 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D","sha256":"D9:9E:DA:D7:6F:5A:E0:87:16:F3:3E:A0:A8:34:8B:84:B7:B0:98:30:2D:18:D8:53:E6:3C:09:06:19:48:07:54"}}},"request":{"raw":"GET /ajax/libs/imask/3.4.0/imask.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 08:40:23 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 10899\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e9f-b217\"\r\nlast-modified: Mon, 04 May 2020 16:11:11 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1053290\r\nexpires: Sun, 24 Nov 2024 08:40:23 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=i2nV6clAGb4eWs%2BQXDmdwk5IFZKfk%2FkYoajBQOy%2BjRNX8ZpkH37%2B5%2FsSUMPKzoi2Gxeo6chKFvikQItXbpduokVFWTQ77uJ%2Fnw6Tx9jTlrqW4FK6%2BO%2BCFpwBk5UOh73vEmDGqd7B\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\ncf-ray: 830afbea696db4f7-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10899,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (45552)","md5":"79c82646b886e08184f7b9fff25e64ff","sha1":"804b4b0f8f3443ff05833e33fb5b76780ffafe25","sha256":"8b76b3502583edddf22df0b9c6ee640053a2cdfeaa113ceff3ea9b61d1f6410d","sha512":"97caf35f6666149f42d615488e113902833dbf5393714ffa014b513966c65393b4ec7ad10b2edb24c17e5db4ec6745e66329badcf6ce36cffbec2b1b2d0d3ebb","ssdeep":"768:mCrttI4hZ8f0FQBUmr3ujTd5Xei7k08LH:mC39CWQBUBTd5XeiB8LH","tlshash":"81238794f2d3b0618ba26068083b230be3777a9964c4c18cf639d9d56e79e496077f3d","first_seen":"2023-03-07T01:07:12Z","last_seen":"2026-05-11T09:46:15.347493Z","times_seen":4620,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.s-pass.org/SPASSDATA/media/cache/portail_vignette_xl/SPASSDATA/attachments/2022_02/17/114223-serencontrer-messages-solid.png","fqdn":"cdn.s-pass.org","domain":"s-pass.org","tld":"org"},"ip":{"addr":"104.26.11.170","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.242Z","timestamp":1701765629242,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s-pass.org","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Thu, 07 Sep 2023 00:00:00 GMT","end":"Fri, 06 Sep 2024 23:59:59 GMT"},"fingerprint":{"sha1":"66:7C:47:A7:D2:1D:EF:BF:C1:BB:CD:FD:25:D2:A3:44:EF:B6:EE:C9","sha256":"C9:26:74:E2:E4:BC:BF:96:42:48:41:3F:17:06:77:CE:CC:C1:88:C1:2B:30:87:DF:D9:9F:D3:EE:38:7D:13:B0"}}},"request":{"raw":"GET /SPASSDATA/media/cache/portail_vignette_xl/SPASSDATA/attachments/2022_02/17/114223-serencontrer-messages-solid.png HTTP/1.1\r\nHost: cdn.s-pass.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 05 Dec 2023 08:40:23 GMT\r\ncontent-type: image/png\r\ncontent-length: 4984\r\ncf-bgj: imgq:100,h2pri\r\ncf-polished: origSize=1313415\r\netag: \"620e522e-140a87\"\r\nlast-modified: Thu, 17 Feb 2022 13:48:30 GMT\r\nstrict-transport-security: max-age=15552000; includeSubDomains; preload\r\nx-xss-protection: 1; mode=block\r\ncache-control: max-age=2678400\r\ncf-cache-status: HIT\r\nage: 1113830\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=Aq5gyQpoZF9r8KZncHMTnHfkoUv2fut6CWpOX1NXZsEKQeR4eFzZnp2Hu%2FYEsrne3Z4nx9MQpge%2BgVp3KGEGsxoio%2FjkTf28h4prk3KrCOz9fCBBzqcwPGmwbhHTWRMN\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nx-content-type-options: nosniff\r\nserver: cloudflare\r\ncf-ray: 830afbeaac5d569f-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4984,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 640 x 512, 8-bit colormap, non-interlaced\\012- data","md5":"faa2a37bbdf6a4d7eb92f4df1396e1bc","sha1":"b63e5a7323f771d2294a58b3251bb6036ae33fce","sha256":"cff8856b01d09b6e68b3d6b75172ea259363b4268be55229a963e86edc77e627","sha512":"43a4f7305288c93b4b95c7bc7a5f4344117281dfeb97358b05f63d5921781ce2feb1d0c2a7a87c02b9185eae0eda0e7bd0a6794d54532849571650b4c1a71e05","ssdeep":"96:I35pQQ8Zeru2CO/sdK+Qv0LRDT9L1JqcuERywYuWY6R4NrLcuY:q5+QierfC4sgv4ZZLPumRfNrLcr","tlshash":"3da13a16d984a36a56f29509403ea166ff547b03f7f6e12020e349dc8e81fc43f7844b","first_seen":"2023-04-18T15:43:57Z","last_seen":"2024-08-21T05:05:44.447433Z","times_seen":1839,"resource_available":false,"data":null}},"time_used":105,"timings":{"blocked":45,"dns":1,"connect":3,"send":0,"wait":10,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-1.12.4.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:30.751Z","timestamp":1701765630751,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Jul 2023 00:00:00 GMT","end":"Sun, 14 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"D2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D","sha256":"B1:CA:3A:23:BA:70:1D:18:3F:EC:99:D7:BE:6D:B2:FD:66:5F:5C:A7:7D:7F:C1:FC:16:D1:FD:89:4B:CC:15:34"}}},"request":{"raw":"GET /jquery-1.12.4.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-17b8b\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Tue, 05 Dec 2023 08:40:23 GMT\r\nage: 6965017\r\nx-served-by: cache-lga21956-LGA, cache-bma1676-BMA\r\nx-cache: HIT, HIT\r\nx-cache-hits: 232, 40173\r\nx-timer: S1701765623.475816,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 33738\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":33738,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (32077)","md5":"4f252523d4af0b478c810c2547a63e19","sha1":"5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb","sha256":"668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404","sha512":"8c6b0c1fcde829ef5ab02a643959019d4ac30d3a7cc25f9a7640760fefff26d9713b84ab2e825d85b3b2b08150265a10143f82e05975accb10645efa26357479","ssdeep":"1536:GYE1JVoiB9JqZdXXe2pD3PgoIiulrUdTJSFk/zkZ4HjL5o8srOaS9TwD6b7/Jp9i:t4J+R3jL5TCOauTwD6FdnCVQNea98HrV","tlshash":"8893d7d9b6d6706287b734a851bf410bb17aa8eab40c4c60f058c8e47e74e9d507bf2d","first_seen":"2023-03-07T01:02:06Z","last_seen":"2026-05-11T16:02:45.157729Z","times_seen":74889,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.1/js/all.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:31.872Z","timestamp":1701765631872,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Tue, 02 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D","sha256":"D9:9E:DA:D7:6F:5A:E0:87:16:F3:3E:A0:A8:34:8B:84:B7:B0:98:30:2D:18:D8:53:E6:3C:09:06:19:48:07:54"}}},"request":{"raw":"GET /ajax/libs/font-awesome/5.8.1/js/all.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://package.dittugarments.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 08:40:23 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 338270\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e60-1125c9\"\r\nlast-modified: Mon, 04 May 2020 16:10:08 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 438192\r\nexpires: Sun, 24 Nov 2024 08:40:23 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=XQ%2B9kt%2BV2F5A4DNBhRxvqcisPcT%2BGBMl4xKAczQD8FGCpYjPHKpg%2B8vJ9MCyzXbMA7omcLjucMahMKB%2F0xq2PBxZxm5ZNDCgJ0ZhfgNWPzkYH0gUHSrV8G9lDoezzHXALTTWIu1z\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\ncf-ray: 830afbeaa997b4f7-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":338270,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65351)","md5":"61008443488f4e7f60d5a5055483187e","sha1":"b56375acc5e062f79280440459d0d7b0f10a290b","sha256":"1d3f596f76f53d53ef7cb1ffeffd6f791b54bd639b42e4f23e7f2d7b36f91c48","sha512":"8c0bbaea9a87596439eb8352fa6d99c5ed7761e93df11ec958d8d02f35be3d0e22da3b0cc414f59c6ad0d2015421527890f90415ee607a50563440d306a9a7ff","ssdeep":"6144:NDomTu5rnQjs2mDVJ4xacbMV2Dnio/NULootRtKe2/jyG6LeL+FJ1GSnbJS8wDKe:Xu5rnMbMptRwXyG6RXa","tlshash":"2535d468d764a3bc9d8687b5c6212074798f91be71e09328d2bcc6f0b2675dcd2c9cc9","first_seen":"2023-03-07T14:50:19Z","last_seen":"2026-05-11T02:08:02.083095Z","times_seen":3523,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":13,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/newcc.css","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.153Z","timestamp":1701765629153,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/newcc.css HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:23 GMT\r\nServer: Apache\r\nLast-Modified: Thu, 02 Jun 2022 12:41:52 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 5211\r\nKeep-Alive: timeout=5, max=95\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5211,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"a8802c7108e75bd512824b11af10a5e7","sha1":"0af53e81447c67be4d787fea0f6ef8c82008e4ea","sha256":"6c37a32274d58b55fc113546582236826b279eb6d667ecbf86e73823713da4f9","sha512":"738605d6be8dbd196e5acf9fa693c95300ecc53c3bc8300a2163adcb4086cce112d2b63465162c70e1377d4b427c7da06208f0038197307cde7cf6e0b86064f4","ssdeep":"96:6JkiS5wFcWTlGE1XBmSGUPyLE0XuKXFqa:YkiS5wFcWsE1RzNP50XuKXFqa","tlshash":"55b1d05319b20810f81a489e1fddff96333c5243852e9865bb83bd48df846786974b8d","first_seen":"2023-04-06T21:17:33Z","last_seen":"2024-11-26T00:24:15.841814Z","times_seen":3386,"resource_available":false,"data":null}},"time_used":182,"timings":{"blocked":65,"dns":0,"connect":0,"send":0,"wait":116,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"cdn.lr-in.com/logger-1.min.js","fqdn":"cdn.lr-in.com","domain":"lr-in.com","tld":"com"},"ip":{"addr":"104.21.234.144","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.162Z","timestamp":1701765629162,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"lr-in.com","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Nov 2023 13:20:34 GMT","end":"Sat, 10 Feb 2024 13:20:33 GMT"},"fingerprint":{"sha1":"06:C7:A4:83:83:3B:72:D9:6B:66:09:15:2F:3A:52:FD:1F:E4:05:24","sha256":"D2:63:0C:1B:53:D8:A9:09:36:EC:2F:D7:84:E5:B3:11:99:5A:19:AE:10:DE:A4:D8:08:C7:32:CD:84:84:FC:3F"}}},"request":{"raw":"GET /logger-1.min.js HTTP/1.1\r\nHost: cdn.lr-in.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 05 Dec 2023 08:40:23 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=14400\r\ncross-origin-resource-policy: cross-origin\r\netag: W/\"005d938d68d6486d3a3995d83dafb80b6f92d96ce6ccec75169b0f59a5359bdb\"\r\nlast-modified: Mon, 04 Dec 2023 21:49:30 GMT\r\nstrict-transport-security: max-age=31556926\r\nx-served-by: cache-bma1663-BMA\r\nx-cache: MISS\r\nx-cache-hits: 0\r\nx-timer: S1701726605.418089,VS0,VE157\r\nvary: x-fh-requested-host, accept-encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\nage: 237\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=Ee%2BMblWJhYim5GeDgMY0dGvlTR35oycZM5CbxrIPQGNlPWtIbIrzBdS%2BY61saTiJoZudv7KKuxSYL7WwMaXayvBQRNCuICmdpKQ1BEgtKyKB0A8BPNnzFeHxC3%2BjPvFW\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830afbea3ca856c5-OSL\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":166964,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"be415574a856fccce77a0105716c4682","sha1":"6971ee2bf3d96c8965e9361339447325542b7f3c","sha256":"bcdc0d636aea1e1f941d9761c2b14f56c305a8423b7a344d9f183e83e180c386","sha512":"3a1bcfcbd36ab2f98929a9462d8d3d8c7950551f5e79d6fd31d65f9081952a56665bc9c9a460a6a78377af103c38c0c84a26fa8f34e5e60d3df914f61455687d","ssdeep":"24576:Fb9umHCXMY0xz8Sx2bFAvPMefgL1fGVTxtt7vpe1xaMyWase7EIwhXEjKbZDb1I3:Z9umHCIz8Sx2bFAvPMefgRfGVTxtt7vl","tlshash":"39051a883999f05203eb90e9103f2407f239591d546de0e0f3a6d9d6e8bd68e6177f3a","first_seen":"2023-12-05T00:19:00Z","last_seen":"2023-12-05T17:11:32Z","times_seen":15,"resource_available":true,"data":null}},"time_used":126,"timings":{"blocked":42,"dns":0,"connect":13,"send":0,"wait":36,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/card.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.320Z","timestamp":1701765629320,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/card.js HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:23 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 58666\r\nKeep-Alive: timeout=5, max=94\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":58666,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (51786)","md5":"30e93a747ba8285615cfbc3643dc1a62","sha1":"3a55f9d6ac708f519d351ea0b69083457778ec9d","sha256":"18c4b9b4c27233b541a47300a4ee98239e1f8dec4bbcd9fabb6bdad12ca82025","sha512":"9487532066928c5592c665834b229b2f3d4e277735a38566e855d182e287d47cce54245217c629837d3eca06bb8f94d4321e127f9885bc2f7f35042bd4aba642","ssdeep":"768:CGYeJShtejcjhtA0bhtsslHopQr67fgXkO0LrasW7FUmBi:tyTjhxbh7HFdk1JvmBi","tlshash":"2543b469f082e0bde223856a10db5bce727dca17d607056cf263b0dd6e52bcd9169b0c","first_seen":"2023-03-07T12:24:57Z","last_seen":"2025-11-16T04:10:40.74186Z","times_seen":3423,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":15,"dns":0,"connect":0,"send":0,"wait":115,"receive":111,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/mine.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.331Z","timestamp":1701765629331,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/mine.js HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:23 GMT\r\nServer: Apache\r\nLast-Modified: Mon, 17 Oct 2022 08:48:22 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 1604\r\nKeep-Alive: timeout=5, max=93\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1604,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text","md5":"f11ee1ccf373dd137b7ad18e4ee2f69e","sha1":"26baf7db3e340be99ece82b37d294b80c373fd12","sha256":"71b8a934f8936288d42fe9fd426ff18cbc1fe54070617fd62420025da56b662e","sha512":"c1012bde928c2e7091e1d71ed8a6446ffac8712f26213325f053c792d3eca0faede7fcf04c8586a2b51f8632b26771581b666292343163d28dc36809cb3ce642","ssdeep":"","tlshash":"d3313145f0b60726013730fa02eb98421664060b714dfd15b09ea7c82f808be7bf27cb","first_seen":"2023-03-08T14:22:25Z","last_seen":"2024-11-26T00:24:15.849397Z","times_seen":3386,"resource_available":false,"data":null}},"time_used":346,"timings":{"blocked":230,"dns":0,"connect":0,"send":0,"wait":116,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/font-awesome.min.css","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.155Z","timestamp":1701765629155,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/font-awesome.min.css HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:23 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 31000\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":31000,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (30837)","md5":"269550530cc127b6aa5a35925a7de6ce","sha1":"512c7d79033e3028a9be61b540cf1a6870c896f8","sha256":"799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd","sha512":"49f4e24e55fa924faa8ad7debe5ffb2e26d439e25696df6b6f20e7f766b50ea58ec3dbd61b6305a1acacd2c80e6e659accee4140f885b9c9e71008e9001fbf4b","ssdeep":"384:wHu5yWeTUKW+KlkJ5de2UYDyVfwYUas2l8yQ/8dwmaU8G:wwlr+Klk3Yi+fwYUf2l8yQ/e9vf","tlshash":"78d241e8e54c01d66731c48bff81b36862b6fb3dd5854da9f01f290c29d226522c5fba","first_seen":"2023-04-05T03:13:25Z","last_seen":"2026-05-11T16:00:50.767652Z","times_seen":267401,"resource_available":true,"data":null}},"time_used":1165,"timings":{"blocked":463,"dns":0,"connect":112,"send":0,"wait":118,"receive":110,"ssl":357},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/intlTelInput.css","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.157Z","timestamp":1701765629157,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/intlTelInput.css HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:23 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 24631\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":24631,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"bd1fe63547e380ddfdd79c4cea97cc1e","sha1":"d5546e0d88b001b6ceb1a06fbf6a47e31214e9de","sha256":"51198a6581f3fdd8b035268f775b1a6f519ee61b3e2a22da4a6fe2b2647b145b","sha512":"9272d35e4d14344c6ca4ec778a292f152e624a3be03f30ef70c5a32a20cb1e167a5250ecf56746de61f17ef822bd6ffef9547a1510fc762bc31d7a2c9ffac153","ssdeep":"384:jiXBF7Fs6Wvd4KmeBOV+iIm2mII70zzMmQWtEvP/bxv:+xF7Fs6WvdBIV","tlshash":"d9b2ed678bb33d65f91be1a129a446a2333b5c47b81a4b2eb2d63d7c5f410e024f3991","first_seen":"2023-04-06T21:17:33Z","last_seen":"2024-11-26T00:24:15.843688Z","times_seen":3388,"resource_available":false,"data":null}},"time_used":1190,"timings":{"blocked":474,"dns":1,"connect":116,"send":0,"wait":117,"receive":112,"ssl":363},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/intlTelInput.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.335Z","timestamp":1701765629335,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/intlTelInput.js HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:23 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 89336\r\nKeep-Alive: timeout=5, max=92\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89336,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (9885)","md5":"9146aa46d1f409004183b86f202c4607","sha1":"717a6d53527fe31ec1c4eef9022b06e5d4d6f6a5","sha256":"b188900aaff98a87fc69519ab04437aa735708b4b92f2adcab6937d2a1d42e37","sha512":"ffdafadbda6196b87917046c9ba4032f881bab67f776fd272c36ed169a21dd7c8063b60c7ae9a5f63e2b9485c1ff5a27649ec6d4dddccdea699b259d46f4613f","ssdeep":"768:9V8Uwh111u9NSIulPDvm7gI1zDvNxGYtWfW//WQUrlYMmbc5f9kMbRo9TXH6H+WT:I3wTgWNJtt/WhrlYMPfvoxg+WdWcFSdW","tlshash":"cc93c51ea7e703279cb3e16a6faf504e626845174606cc143c9c97c81f8e86587f6bf8","first_seen":"2023-03-08T14:22:25Z","last_seen":"2026-05-08T21:34:31.01459Z","times_seen":3718,"resource_available":true,"data":null}},"time_used":568,"timings":{"blocked":343,"dns":0,"connect":0,"send":0,"wait":114,"receive":111,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/data.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:31.485Z","timestamp":1701765631485,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/data.js HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:23 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 12100\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12100,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (9881)","md5":"a2b78e86240966cda00a463614e4f3dd","sha1":"a2606f30f77bb9f235746059db16b0ee8b585c31","sha256":"55e47db856701715f613de8674bd0c67604cc304514b791bed402866d18c8557","sha512":"baddcf228f49de0809cb84c7e26b3b27944530e0913184362aaf1f29501f6dc1007de8c9bfdc9c4b1d9525cb744afb06cddac37036e7f4e5b6cc806f6cc543fb","ssdeep":"192:jcq8EQsaV8Uac8h7yeL1gS1ZdlJlBy3TTJpYW0JK2EeiNN0JtAavY+XTI0RFFg36:WsaV8Uwhrp11Z89yJM3IJtAavnDI0RF5","tlshash":"f242c539ba27152b08f6cc495c84178ea7044f30237bdd06768e3fa94b8f816a7576ad","first_seen":"2023-03-08T14:22:25Z","last_seen":"2024-11-26T00:24:15.847489Z","times_seen":3385,"resource_available":true,"data":null}},"time_used":118,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":117,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Raleway|Rock+Salt|Source+Code+Pro:300,400,600","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.74.106","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.146Z","timestamp":1701765629146,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"CC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42","sha256":"9A:90:D4:1D:0C:D1:CA:9D:4D:19:37:44:C4:E6:E4:28:27:C0:F5:0A:9C:B4:56:89:C4:D1:8A:63:A7:01:28:54"}}},"request":{"raw":"GET /css?family=Raleway|Rock+Salt|Source+Code+Pro:300,400,600 HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 05 Dec 2023 08:40:23 GMT\r\ndate: Tue, 05 Dec 2023 08:40:23 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":37431,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"gzip compressed data, max compression\\012- data","md5":"1fd679b4cf272535548959bf3a47e3be","sha1":"e7e71c5b126da5ee302d190126cef763618fb0a3","sha256":"edcef635344a69b0c89ed4b62c74728b79e59b0986c25ab83f204215817d6e45","sha512":"b4c8e05d202e052c40552d84f3699e03e6f03cdb4645b634d39e0f5fe4a9678f65e0fedf61ed62fc06e5242554db24c04ce9ba839b9d144989dc0cce0d321223","ssdeep":"768:7+ECwQsZMAky39D6uKip6WjDKYUcLxu585DvNSoB59j:7+ERQsZMAkm95Kip6WPHn45mpl","tlshash":"c8f220dad78d0f6aa4f1f36d297d00cb4a2d4025cd00899f3cbb95dc2ca585ce925a7b","first_seen":"2023-10-23T02:58:37Z","last_seen":"2024-08-21T03:48:18.103621Z","times_seen":22,"resource_available":false,"data":null}},"time_used":178,"timings":{"blocked":77,"dns":1,"connect":8,"send":0,"wait":20,"receive":0,"ssl":69},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/app.css","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.151Z","timestamp":1701765629151,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/app.css HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:23 GMT\r\nServer: Apache\r\nLast-Modified: Thu, 02 Jun 2022 17:04:20 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 913520\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":913520,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text","md5":"74d0401d2b753a90be1d872aaa6e94b4","sha1":"386f08a79bdc853e8a81585efcfc35ca90a49687","sha256":"0762226aa4722b7c5349c825388089b0e3f8cdde6dd5dbb5f002d4fb014f568f","sha512":"fa392173600ad45ac8c17c93383e54fefcd44237d7a08bbae4ca139bee4e5b50c5e35972458d02248cd1f72159714ceb6828025b2f49df79f72fec16c761b382","ssdeep":"6144:Fx5XmsxdADR9SbsjwYpjyY5iFqoMHv+3cWNa6ANY6J:LNmsxO1iFqoMHv+K","tlshash":"1f15025fa4f511959d47a07825eb2760633ae01bd91edc1dbe8eb38ccfc92848ca178d","first_seen":"2023-04-06T21:17:33Z","last_seen":"2024-11-26T00:24:15.840888Z","times_seen":3108,"resource_available":false,"data":null}},"time_used":1845,"timings":{"blocked":510,"dns":0,"connect":115,"send":0,"wait":117,"receive":703,"ssl":390},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/app.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.272Z","timestamp":1701765629272,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/app.js HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:23 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 920095\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":920095,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (7706), with CRLF line terminators","md5":"508afd6ff9ab52ce8f480d35568038d1","sha1":"b5d9891100e0dce59cee59b75a098a1ae64c779b","sha256":"8af18273c1833477cf810c4e3a76f483b6a6064571d25ea7742d8708378c8f09","sha512":"7bd1a63f11dfa4845faae777928a11aa6211672a5d3b769a7b7f972e78a0f1ce5a63f86b066e30d58565b26f79b11516fc5364f0f8cefd8b2793e1a2d2858e4a","ssdeep":"24576:Y+P88Ns8KHcY0tbZwi+qEbA5bAKalw19a1abAeXT1wCUizMjIQ37QHtLIYAMd7n:Y+P88NsbcY0tbZwi+qEbA5bAKalw19aI","tlshash":"ba158456b391b7269172f06c589abc8de62d9ad79049484e31fdc3dc0f39870827ee6c","first_seen":"2023-03-08T14:22:25Z","last_seen":"2024-11-26T00:24:15.850363Z","times_seen":3375,"resource_available":true,"data":null}},"time_used":1703,"timings":{"blocked":446,"dns":0,"connect":0,"send":0,"wait":117,"receive":697,"ssl":443},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/gh/killbot-org/Killbot-JS@latest/dist/main.min.js","fqdn":"cdn.jsdelivr.net","domain":"cdn.jsdelivr.net","tld":"net"},"ip":{"addr":"151.101.193.229","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.159Z","timestamp":1701765629159,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"jsdelivr.net","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2023 Q3","organization":"GlobalSign nv-sa"},"validity":{"start":"Wed, 27 Sep 2023 18:13:13 GMT","end":"Mon, 28 Oct 2024 18:13:12 GMT"},"fingerprint":{"sha1":"05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09","sha256":"0F:90:CD:B5:CD:3B:AE:F1:BB:01:3A:4D:6D:2E:A6:BA:98:C6:1B:1B:75:BE:DD:CB:39:33:E8:D1:21:F1:9F:EF"}}},"request":{"raw":"GET /gh/killbot-org/Killbot-JS@latest/dist/main.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ncontent-length: 55\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=600, s-maxage=600\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\ncontent-type: text/plain; charset=utf-8\r\netag: W/\"38-ZuySTw0y37Br8N2hEzvUuISy2D0\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\ndate: Tue, 05 Dec 2023 08:40:24 GMT\r\nage: 237\r\nx-served-by: cache-fra-etou8220062-FRA, cache-bma1647-BMA\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":55,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"2ccf42e1d8ce91dc28fc42053a58924f","sha1":"66ec924f0d32dfb06bf0dda1133bd4b884b2d83d","sha256":"51311bb7fe0896738e7bb28de627f8ad47495c61d8840e5921460123484560a5","sha512":"84400cca2de766c18872759e7b52b9e460f9269ab7c39f40bd58edd310e5eb4102b02cc008fb6ed6e149971b4c6ebc0d2ac13ac3c01e86c6d41380d80f8969ba","ssdeep":"","tlshash":"799002e71101c057667a5902d505a0e02b1855541294d1504024e40d75c802d56d94c4","first_seen":"2023-04-09T22:53:28Z","last_seen":"2025-02-26T21:11:38.491012Z","times_seen":3646,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/logo.png","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.164Z","timestamp":1701765629164,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/logo.png HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:24 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 1998\r\nKeep-Alive: timeout=5, max=91\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1998,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 214 x 20, 8-bit/color RGBA, non-interlaced\\012- data","md5":"5d14ab93691604e826e1319d53599eb9","sha1":"78724360e9d25da584445b851e37bca05abe6b85","sha256":"3f0c62b5ccdcdbf3b3ae3885f1e6959e2d937eba9b29dea9a6bdb98788041756","sha512":"dc91304849c5d9b54124ce5a0fa47c9d0bffb35090479fafb4dcd7cff9b75d0467a3aa3d7837d1e1ef418f3f961dc9d31d65387c701646febb792f1ab2ededaa","ssdeep":"","tlshash":"64410ce64550006945b6e5453834e191ee79d4608f5f29b0562658b44d6c317b0ddbf1","first_seen":"2023-04-09T22:53:28Z","last_seen":"2026-05-07T14:12:09.534991Z","times_seen":9317,"resource_available":false,"data":null}},"time_used":1433,"timings":{"blocked":1318,"dns":0,"connect":0,"send":0,"wait":115,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"code.jquery.com/jquery-1.12.4.min.js","fqdn":"code.jquery.com","domain":"jquery.com","tld":"com"},"ip":{"addr":"151.101.130.137","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:30.751Z","timestamp":1701765630751,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jquery.com","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Tue, 11 Jul 2023 00:00:00 GMT","end":"Sun, 14 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"D2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D","sha256":"B1:CA:3A:23:BA:70:1D:18:3F:EC:99:D7:BE:6D:B2:FD:66:5F:5C:A7:7D:7F:C1:FC:16:D1:FD:89:4B:CC:15:34"}}},"request":{"raw":"GET /jquery-1.12.4.min.js HTTP/1.1\r\nHost: code.jquery.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ncontent-type: application/javascript; charset=utf-8\r\nlast-modified: Fri, 18 Oct 1991 12:00:00 GMT\r\netag: W/\"28feccc0-17b8b\"\r\ncache-control: public, max-age=31536000, stale-while-revalidate=604800\r\naccess-control-allow-origin: *\r\ncontent-encoding: gzip\r\nvia: 1.1 varnish, 1.1 varnish\r\naccept-ranges: bytes\r\ndate: Tue, 05 Dec 2023 08:40:24 GMT\r\nage: 6965019\r\nx-served-by: cache-lga21956-LGA, cache-bma1676-BMA\r\nx-cache: HIT, HIT\r\nx-cache-hits: 232, 40174\r\nx-timer: S1701765625.936867,VS0,VE0\r\nvary: Accept-Encoding\r\ncontent-length: 33738\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":33738,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (32077)","md5":"4f252523d4af0b478c810c2547a63e19","sha1":"5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb","sha256":"668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404","sha512":"8c6b0c1fcde829ef5ab02a643959019d4ac30d3a7cc25f9a7640760fefff26d9713b84ab2e825d85b3b2b08150265a10143f82e05975accb10645efa26357479","ssdeep":"1536:GYE1JVoiB9JqZdXXe2pD3PgoIiulrUdTJSFk/zkZ4HjL5o8srOaS9TwD6b7/Jp9i:t4J+R3jL5TCOauTwD6FdnCVQNea98HrV","tlshash":"8893d7d9b6d6706287b734a851bf410bb17aa8eab40c4c60f058c8e47e74e9d507bf2d","first_seen":"2023-03-07T01:02:06Z","last_seen":"2026-05-11T16:02:45.157729Z","times_seen":74889,"resource_available":true,"data":null}},"time_used":10,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/imask/3.4.0/imask.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.247Z","timestamp":1701765629247,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Tue, 02 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D","sha256":"D9:9E:DA:D7:6F:5A:E0:87:16:F3:3E:A0:A8:34:8B:84:B7:B0:98:30:2D:18:D8:53:E6:3C:09:06:19:48:07:54"}}},"request":{"raw":"GET /ajax/libs/imask/3.4.0/imask.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 08:40:25 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 10899\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e9f-b217\"\r\nlast-modified: Mon, 04 May 2020 16:11:11 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1053292\r\nexpires: Sun, 24 Nov 2024 08:40:25 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=tQpooLdCmEAzAkkWpB6bSgBecsjEpJGwwF2ptm3sg4Rz8rmN2FP8IB54zMAK%2BtpBYjezNZkFORq%2BDxMNw4DaPuWOSNEuqLCp9xA%2FcEvjg2DSrWBhur8MAHDFyxyYZ%2FSiDASI0R0Q\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\ncf-ray: 830afbf47a7fb4f7-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10899,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (45552)","md5":"79c82646b886e08184f7b9fff25e64ff","sha1":"804b4b0f8f3443ff05833e33fb5b76780ffafe25","sha256":"8b76b3502583edddf22df0b9c6ee640053a2cdfeaa113ceff3ea9b61d1f6410d","sha512":"97caf35f6666149f42d615488e113902833dbf5393714ffa014b513966c65393b4ec7ad10b2edb24c17e5db4ec6745e66329badcf6ce36cffbec2b1b2d0d3ebb","ssdeep":"768:mCrttI4hZ8f0FQBUmr3ujTd5Xei7k08LH:mC39CWQBUBTd5XeiB8LH","tlshash":"81238794f2d3b0618ba26068083b230be3777a9964c4c18cf639d9d56e79e496077f3d","first_seen":"2023-03-07T01:07:12Z","last_seen":"2026-05-11T09:46:15.347493Z","times_seen":4620,"resource_available":true,"data":null}},"time_used":9,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/app.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.272Z","timestamp":1701765629272,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/app.js HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:25 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 920095\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":920095,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (7706), with CRLF line terminators","md5":"508afd6ff9ab52ce8f480d35568038d1","sha1":"b5d9891100e0dce59cee59b75a098a1ae64c779b","sha256":"8af18273c1833477cf810c4e3a76f483b6a6064571d25ea7742d8708378c8f09","sha512":"7bd1a63f11dfa4845faae777928a11aa6211672a5d3b769a7b7f972e78a0f1ce5a63f86b066e30d58565b26f79b11516fc5364f0f8cefd8b2793e1a2d2858e4a","ssdeep":"24576:Y+P88Ns8KHcY0tbZwi+qEbA5bAKalw19a1abAeXT1wCUizMjIQ37QHtLIYAMd7n:Y+P88NsbcY0tbZwi+qEbA5bAKalw19aI","tlshash":"ba158456b391b7269172f06c589abc8de62d9ad79049484e31fdc3dc0f39870827ee6c","first_seen":"2023-03-08T14:22:25Z","last_seen":"2024-11-26T00:24:15.850363Z","times_seen":3375,"resource_available":true,"data":null}},"time_used":1703,"timings":{"blocked":446,"dns":0,"connect":0,"send":0,"wait":117,"receive":697,"ssl":443},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/data.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:31.485Z","timestamp":1701765631485,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/data.js HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:25 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 12100\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":12100,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (9881)","md5":"a2b78e86240966cda00a463614e4f3dd","sha1":"a2606f30f77bb9f235746059db16b0ee8b585c31","sha256":"55e47db856701715f613de8674bd0c67604cc304514b791bed402866d18c8557","sha512":"baddcf228f49de0809cb84c7e26b3b27944530e0913184362aaf1f29501f6dc1007de8c9bfdc9c4b1d9525cb744afb06cddac37036e7f4e5b6cc806f6cc543fb","ssdeep":"192:jcq8EQsaV8Uac8h7yeL1gS1ZdlJlBy3TTJpYW0JK2EeiNN0JtAavY+XTI0RFFg36:WsaV8Uwhrp11Z89yJM3IJtAavnDI0RF5","tlshash":"f242c539ba27152b08f6cc495c84178ea7044f30237bdd06768e3fa94b8f816a7576ad","first_seen":"2023-03-08T14:22:25Z","last_seen":"2024-11-26T00:24:15.847489Z","times_seen":3385,"resource_available":true,"data":null}},"time_used":118,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":117,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/card.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.320Z","timestamp":1701765629320,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/card.js HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:25 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 58666\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":58666,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (51786)","md5":"30e93a747ba8285615cfbc3643dc1a62","sha1":"3a55f9d6ac708f519d351ea0b69083457778ec9d","sha256":"18c4b9b4c27233b541a47300a4ee98239e1f8dec4bbcd9fabb6bdad12ca82025","sha512":"9487532066928c5592c665834b229b2f3d4e277735a38566e855d182e287d47cce54245217c629837d3eca06bb8f94d4321e127f9885bc2f7f35042bd4aba642","ssdeep":"768:CGYeJShtejcjhtA0bhtsslHopQr67fgXkO0LrasW7FUmBi:tyTjhxbh7HFdk1JvmBi","tlshash":"2543b469f082e0bde223856a10db5bce727dca17d607056cf263b0dd6e52bcd9169b0c","first_seen":"2023-03-07T12:24:57Z","last_seen":"2025-11-16T04:10:40.74186Z","times_seen":3423,"resource_available":true,"data":null}},"time_used":241,"timings":{"blocked":15,"dns":0,"connect":0,"send":0,"wait":115,"receive":111,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/mine.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.331Z","timestamp":1701765629331,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/mine.js HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:25 GMT\r\nServer: Apache\r\nLast-Modified: Mon, 17 Oct 2022 08:48:22 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 1604\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1604,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text","md5":"f11ee1ccf373dd137b7ad18e4ee2f69e","sha1":"26baf7db3e340be99ece82b37d294b80c373fd12","sha256":"71b8a934f8936288d42fe9fd426ff18cbc1fe54070617fd62420025da56b662e","sha512":"c1012bde928c2e7091e1d71ed8a6446ffac8712f26213325f053c792d3eca0faede7fcf04c8586a2b51f8632b26771581b666292343163d28dc36809cb3ce642","ssdeep":"","tlshash":"d3313145f0b60726013730fa02eb98421664060b714dfd15b09ea7c82f808be7bf27cb","first_seen":"2023-03-08T14:22:25Z","last_seen":"2024-11-26T00:24:15.849397Z","times_seen":3386,"resource_available":false,"data":null}},"time_used":346,"timings":{"blocked":230,"dns":0,"connect":0,"send":0,"wait":116,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.1/js/all.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:31.872Z","timestamp":1701765631872,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Tue, 02 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D","sha256":"D9:9E:DA:D7:6F:5A:E0:87:16:F3:3E:A0:A8:34:8B:84:B7:B0:98:30:2D:18:D8:53:E6:3C:09:06:19:48:07:54"}}},"request":{"raw":"GET /ajax/libs/font-awesome/5.8.1/js/all.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://package.dittugarments.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 08:40:26 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 338270\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb03e60-1125c9\"\r\nlast-modified: Mon, 04 May 2020 16:10:08 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 438195\r\nexpires: Sun, 24 Nov 2024 08:40:26 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=n0sWYJ15K3OYEnw%2FIpXqLflu2GdqsnBXUgty6aCZdM7kYmon9MRBTfyu1ab4tPg5%2F83bJWvkUf41V%2Fbc2wF67zXs%2FC3G2OlbhxhNpC1Br6oWGj3ImIkLCAFCGQS9LKy66tJARKG1\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\ncf-ray: 830afbfad829b4f7-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":338270,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (65351)","md5":"61008443488f4e7f60d5a5055483187e","sha1":"b56375acc5e062f79280440459d0d7b0f10a290b","sha256":"1d3f596f76f53d53ef7cb1ffeffd6f791b54bd639b42e4f23e7f2d7b36f91c48","sha512":"8c0bbaea9a87596439eb8352fa6d99c5ed7761e93df11ec958d8d02f35be3d0e22da3b0cc414f59c6ad0d2015421527890f90415ee607a50563440d306a9a7ff","ssdeep":"6144:NDomTu5rnQjs2mDVJ4xacbMV2Dnio/NULootRtKe2/jyG6LeL+FJ1GSnbJS8wDKe:Xu5rnMbMptRwXyG6RXa","tlshash":"2535d468d764a3bc9d8687b5c6212074798f91be71e09328d2bcc6f0b2675dcd2c9cc9","first_seen":"2023-03-07T14:50:19Z","last_seen":"2026-05-11T02:08:02.083095Z","times_seen":3523,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":13,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/intlTelInput.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.335Z","timestamp":1701765629335,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/intlTelInput.js HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:26 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 89336\r\nKeep-Alive: timeout=5, max=95\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89336,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (9885)","md5":"9146aa46d1f409004183b86f202c4607","sha1":"717a6d53527fe31ec1c4eef9022b06e5d4d6f6a5","sha256":"b188900aaff98a87fc69519ab04437aa735708b4b92f2adcab6937d2a1d42e37","sha512":"ffdafadbda6196b87917046c9ba4032f881bab67f776fd272c36ed169a21dd7c8063b60c7ae9a5f63e2b9485c1ff5a27649ec6d4dddccdea699b259d46f4613f","ssdeep":"768:9V8Uwh111u9NSIulPDvm7gI1zDvNxGYtWfW//WQUrlYMmbc5f9kMbRo9TXH6H+WT:I3wTgWNJtt/WhrlYMPfvoxg+WdWcFSdW","tlshash":"cc93c51ea7e703279cb3e16a6faf504e626845174606cc143c9c97c81f8e86587f6bf8","first_seen":"2023-03-08T14:22:25Z","last_seen":"2026-05-08T21:34:31.01459Z","times_seen":3718,"resource_available":true,"data":null}},"time_used":568,"timings":{"blocked":343,"dns":0,"connect":0,"send":0,"wait":114,"receive":111,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/countrySelect.js","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.414Z","timestamp":1701765629414,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/countrySelect.js HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:26 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 36634\r\nKeep-Alive: timeout=5, max=94\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":36634,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (347)","md5":"ee3d5d4880b5dac09d9ca3c23cdd28da","sha1":"f95728f89723a079442d67ed6aa38abf8ecab4fd","sha256":"657baddf2724ae4570fa40c00dddefa3379b5709ac06ceb536f6177a1bfc394f","sha512":"069739228d95dec65fd749e46c701f8a1f55265c5b8f5201705bcd5c8672dd106ebb15db9e75fc7ec92c12e67a2c9fcfd461618a717e1d4870e8122b1ad7830a","ssdeep":"768:vECwQsZMAky39D6uKip6WjDKYUcLxu585DvNSoB59j:vERQsZMAkm95Kip6WPHn45mpl","tlshash":"10f21fdad78d0f6aa4f1e36d2d7d00cb4a2d4125cd00899f3cbb929c2ca585cd925a7b","first_seen":"2023-03-08T14:22:25Z","last_seen":"2026-05-06T05:40:59.671047Z","times_seen":3472,"resource_available":true,"data":null}},"time_used":681,"timings":{"blocked":433,"dns":0,"connect":0,"send":0,"wait":116,"receive":132,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/flagscountry.png","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:32.295Z","timestamp":1701765632295,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/flagscountry.png HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:26 GMT\r\nServer: Apache\r\nLast-Modified: Wed, 22 Sep 2021 16:06:48 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 65960\r\nKeep-Alive: timeout=5, max=93\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":65960,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 5630 x 15, 8-bit/color RGBA, non-interlaced\\012- data","md5":"ae33acae404631e997ef8d91dae08ccd","sha1":"19fae9a6aa4bb419eba378b0d0573906dc1be38a","sha256":"38025784bedeb5e4cae496b131c85cabbd95ae0b1c0a3c9d9cb474d7262db04b","sha512":"c1f0c98bcc1ea2d28a01cc7a14c2f77d8c4c99f7b00d10773e4f40bc7fc7703341aa89bcfa3927fd67ea10fcc6516d2532edc1b43e7d788de16309c8251dcbb9","ssdeep":"1536:bZPHu0UAVHiKwJom57/ec4WK9r76icNoW80bG1q6P9Jgr:lPHWiHVEokSN19r7dpWVG46PTgr","tlshash":"a253022d7b842868cf96d1575ca7c62f6729d0a446042bdca50f29bd87f0cb81bf1f22","first_seen":"2023-04-09T22:53:29Z","last_seen":"2026-05-11T14:30:59.829558Z","times_seen":4880,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":117,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"package.dittugarments.com/public/dinzab/favicon.gif","fqdn":"package.dittugarments.com","domain":"dittugarments.com","tld":"com"},"ip":{"addr":"167.114.30.172","port":443,"asn":16276,"as":"OVH SAS","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:32.524Z","timestamp":1701765632524,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.parcel.dittugarments.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Mon, 20 Nov 2023 20:23:20 GMT","end":"Sun, 18 Feb 2024 20:23:19 GMT"},"fingerprint":{"sha1":"47:76:07:51:B1:1D:92:BF:78:40:6A:2E:8E:28:9C:87:F7:89:13:56","sha256":"08:A4:9D:AC:DA:66:61:C1:1D:76:15:B1:BB:E3:FA:51:03:C0:34:E6:B6:6D:13:D9:BB:0E:67:8C:B9:2F:D9:EE"}}},"request":{"raw":"GET /public/dinzab/favicon.gif HTTP/1.1\r\nHost: package.dittugarments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu\r\nCookie: XSRF-TOKEN=eyJpdiI6Inp6MnVIVjltckdNdlU1ZlFYSjJwOWc9PSIsInZhbHVlIjoiaTI0cHBTNUZweWhTejhCektONGJUajNKR1BERlA3VjFBUElDbTRHNHI2dEtWNWV0Q0x6UWVVdUxvakVyQnF5VFN0dWYxbno3RnJFdVVYcUx0RCthZ3hrdXJvSUs4TDJNamgxQmNXODBMK0JDclVjYXl2eUYyRXE3ekNpMDhpQWUiLCJtYWMiOiIyYmQ3MTUwOWUzZWNhNGNiNGNiMWE3YWJmYzllMmUyNzU1OWEwYmI3M2IyNzA4YWVmOTE0YzYwYjBkMDY2MDVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImFlY29XQ3BrSEdwZklkQ3FsSnVRSEE9PSIsInZhbHVlIjoiUmRldmxlc2RRR0JaSWduZGsrNHVqZUY1OW85dFFFalIxVU1tUEcxd0lubGVMZGxJY2FSc05mVldDYzUwckg2OWRHNFZUY3d3aDM5RTVpa3lSS0Y1aExLL3RGekx1UXhvWWJtTU0zY3U5Qnlpd25rcWtYKzQxbHhJTVhVSjV3TmUiLCJtYWMiOiJhNjc4ZDU3MzI4MmExYmJiYWY4N2E5YmQyNmNkNzZhZGQ2M2EwNGFmZWQ0ZTA3MDdjMDhlYWIzZjYxMjdkMDljIiwidGFnIjoiIn0%3D\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 08:40:26 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 31 May 2022 07:05:50 GMT\r\nAccept-Ranges: bytes\r\nContent-Length: 2238\r\nKeep-Alive: timeout=5, max=92\r\nConnection: Keep-Alive\r\nContent-Type: image/gif\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2238,"size_decoded":0,"mime_type":"image/gif","magic":"MS Windows icon resource - 1 icon, 32x32, 8 bits/pixel\\012- data","md5":"a6f1af8e79a11829ba9a66474b06bb97","sha1":"d99e3ec7747c865033a8dfad43c9f49634404bc1","sha256":"b0dbd00f3650fa6b931e678a9d8f79a405d23c7adf111ab91b1a01a0e7109807","sha512":"f229b3a71ec1568dbc9f422097cde564eaa6ea530b370d47b82756b660c3342e4402c40600a22c988a5973039860ad2faf83c6721d8d1725c5d61db6044a6d69","ssdeep":"","tlshash":"ed41a799716d90ced1bcaa3e74612b359651dc190ba1aa5e503f0631a90a2491f0abe4","first_seen":"2023-04-09T22:53:29Z","last_seen":"2026-04-23T23:39:41.405319Z","times_seen":7828,"resource_available":false,"data":null}},"time_used":118,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":118,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - DHL","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with DHL phishing","tags":["dhl","logistics","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7\u0026client=js\u0026version=7.0.3\u0026flash=false","fqdn":"ws-mt1.pusher.com","domain":"pusher.com","tld":"com"},"ip":{"addr":"3.82.167.91","port":0,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-05T08:40:33.165994679Z","timestamp":1701765633165,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET /app/bc5ba70500b3342fb1aa?protocol=7\u0026client=js\u0026version=7.0.3\u0026flash=false HTTP/1.1\r\nHost: ws-mt1.pusher.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://package.dittugarments.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: cIA4m0E6ndb6cHBl0dOJpg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Tue, 05 Dec 2023 08:40:27 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: 2LoqPQkzNkJY7L6uXX5yIk6jpU0=\r\nSec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover; server_no_context_takeover\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-11T16:03:02.259001Z","times_seen":15014758,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7\u0026client=js\u0026version=7.0.3\u0026flash=false","fqdn":"ws-mt1.pusher.com","domain":"pusher.com","tld":"com"},"ip":{"addr":"54.91.212.129","port":0,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-05T08:40:33.638933577Z","timestamp":1701765633638,"http_version":"","security_state":"secure","security_info":null,"request":{"raw":"GET /app/bc5ba70500b3342fb1aa?protocol=7\u0026client=js\u0026version=7.0.3\u0026flash=false HTTP/1.1\r\nHost: ws-mt1.pusher.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://package.dittugarments.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: 9V+HRIArZItseI4KPv8QYQ==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Tue, 05 Dec 2023 08:40:27 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: xKM+b+BO48TZ+qv1Cch/vn2NkcY=\r\nSec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover; server_no_context_takeover\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-11T16:03:02.259001Z","times_seen":15014758,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sockjs-mt1.pusher.com/pusher/app/bc5ba70500b3342fb1aa/87/99h15m3f/xhr_streaming?protocol=7\u0026client=js\u0026version=7.0.3\u0026t=1701765634446\u0026n=1","fqdn":"sockjs-mt1.pusher.com","domain":"pusher.com","tld":"com"},"ip":{"addr":"34.201.239.212","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:34.829Z","timestamp":1701765634829,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sockjs-mt1.pusher.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Nov 2023 01:30:52 GMT","end":"Sat, 10 Feb 2024 01:30:51 GMT"},"fingerprint":{"sha1":"0D:D2:31:02:FF:57:E9:AF:23:47:25:1D:B7:1C:66:F3:1A:4E:DA:5C","sha256":"DF:0D:67:2D:62:18:B7:F7:40:06:D4:37:15:53:38:75:82:07:19:45:90:3C:96:5D:A0:F3:1B:D3:6F:75:75:80"}}},"request":{"raw":"OPTIONS /pusher/app/bc5ba70500b3342fb1aa/87/99h15m3f/xhr_streaming?protocol=7\u0026client=js\u0026version=7.0.3\u0026t=1701765634446\u0026n=1 HTTP/1.1\r\nHost: sockjs-mt1.pusher.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://package.dittugarments.com/\r\nOrigin: https://package.dittugarments.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 204 No Content\r\naccess-control-allow-origin: https://package.dittugarments.com\r\nvary: Origin\r\naccess-control-allow-headers: content-type\r\naccess-control-allow-credentials: true\r\ncache-control: public, max-age=31536000\r\nexpires: Wed, 04 Dec 2024 08:40:28 GMT\r\naccess-control-allow-methods: OPTIONS, POST\r\naccess-control-max-age: 31536000\r\ndate: Tue, 05 Dec 2023 08:40:28 GMT\r\nstrict-transport-security: max-age=15768000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-11T16:03:02.259001Z","times_seen":15014758,"resource_available":true,"data":null}},"time_used":1887,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":104,"receive":1783,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"sockjs-mt1.pusher.com/pusher/app/bc5ba70500b3342fb1aa/916/5i33g31g/xhr_streaming?protocol=7\u0026client=js\u0026version=7.0.3\u0026t=1701765634452\u0026n=1","fqdn":"sockjs-mt1.pusher.com","domain":"pusher.com","tld":"com"},"ip":{"addr":"34.201.239.212","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:34.462Z","timestamp":1701765634462,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sockjs-mt1.pusher.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Sun, 12 Nov 2023 01:30:52 GMT","end":"Sat, 10 Feb 2024 01:30:51 GMT"},"fingerprint":{"sha1":"0D:D2:31:02:FF:57:E9:AF:23:47:25:1D:B7:1C:66:F3:1A:4E:DA:5C","sha256":"DF:0D:67:2D:62:18:B7:F7:40:06:D4:37:15:53:38:75:82:07:19:45:90:3C:96:5D:A0:F3:1B:D3:6F:75:75:80"}}},"request":{"raw":"OPTIONS /pusher/app/bc5ba70500b3342fb1aa/916/5i33g31g/xhr_streaming?protocol=7\u0026client=js\u0026version=7.0.3\u0026t=1701765634452\u0026n=1 HTTP/1.1\r\nHost: sockjs-mt1.pusher.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://package.dittugarments.com/\r\nOrigin: https://package.dittugarments.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\naccess-control-allow-origin: https://package.dittugarments.com\r\nvary: Origin\r\naccess-control-allow-headers: content-type\r\naccess-control-allow-credentials: true\r\ncache-control: public, max-age=31536000\r\nexpires: Wed, 04 Dec 2024 08:40:28 GMT\r\naccess-control-allow-methods: OPTIONS, POST\r\naccess-control-max-age: 31536000\r\ndate: Tue, 05 Dec 2023 08:40:28 GMT\r\nstrict-transport-security: max-age=15768000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-11T16:03:02.259001Z","times_seen":15014758,"resource_available":true,"data":null}},"time_used":534,"timings":{"blocked":213,"dns":0,"connect":100,"send":0,"wait":103,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"wss","addr":"ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7\u0026client=js\u0026version=7.0.3\u0026flash=false","fqdn":"ws-mt1.pusher.com","domain":"pusher.com","tld":"com"},"ip":{"addr":"54.91.212.129","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:33.232Z","timestamp":1701765633232,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"pusher.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sun, 25 Jun 2023 00:00:00 GMT","end":"Wed, 24 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"7F:21:03:8F:D0:81:ED:06:33:D6:8D:83:17:DA:79:19:72:2E:BF:39","sha256":"32:EA:E2:D9:19:63:06:A5:03:0F:3F:9C:29:01:1E:99:50:E6:A0:84:B4:C8:5F:74:3F:F6:40:71:09:1D:DA:2D"}}},"request":{"raw":"GET /app/bc5ba70500b3342fb1aa?protocol=7\u0026client=js\u0026version=7.0.3\u0026flash=false HTTP/1.1\r\nHost: ws-mt1.pusher.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://package.dittugarments.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: 9V+HRIArZItseI4KPv8QYQ==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Tue, 05 Dec 2023 08:40:27 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: xKM+b+BO48TZ+qv1Cch/vn2NkcY=\r\nSec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover; server_no_context_takeover\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-11T16:03:02.259001Z","times_seen":15014758,"resource_available":true,"data":null}},"time_used":406,"timings":{"blocked":0,"dns":1,"connect":100,"send":0,"wait":100,"receive":0,"ssl":205},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dispatching-centre.lasamericascargo.com/images/foo.png","fqdn":"dispatching-centre.lasamericascargo.com","domain":"lasamericascargo.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:29.415Z","timestamp":1701765629415,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /images/foo.png HTTP/1.1\r\nHost: dispatching-centre.lasamericascargo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://package.dittugarments.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-11T16:03:02.259001Z","times_seen":15014758,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"wss","addr":"ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7\u0026client=js\u0026version=7.0.3\u0026flash=false","fqdn":"ws-mt1.pusher.com","domain":"pusher.com","tld":"com"},"ip":{"addr":"3.82.167.91","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://package.dittugarments.com/public/pIHBmwqaisRf5oFDD9HcdBDecIpZdbBu","date":"2023-12-05T08:40:32.450Z","timestamp":1701765632450,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"pusher.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Sun, 25 Jun 2023 00:00:00 GMT","end":"Wed, 24 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"7F:21:03:8F:D0:81:ED:06:33:D6:8D:83:17:DA:79:19:72:2E:BF:39","sha256":"32:EA:E2:D9:19:63:06:A5:03:0F:3F:9C:29:01:1E:99:50:E6:A0:84:B4:C8:5F:74:3F:F6:40:71:09:1D:DA:2D"}}},"request":{"raw":"GET /app/bc5ba70500b3342fb1aa?protocol=7\u0026client=js\u0026version=7.0.3\u0026flash=false HTTP/1.1\r\nHost: ws-mt1.pusher.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://package.dittugarments.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: cIA4m0E6ndb6cHBl0dOJpg==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nDate: Tue, 05 Dec 2023 08:40:27 GMT\r\nConnection: upgrade\r\nUpgrade: websocket\r\nSec-WebSocket-Accept: 2LoqPQkzNkJY7L6uXX5yIk6jpU0=\r\nSec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover; server_no_context_takeover\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-11T16:03:02.259001Z","times_seen":15014758,"resource_available":true,"data":null}},"time_used":1025,"timings":{"blocked":0,"dns":310,"connect":407,"send":0,"wait":102,"receive":0,"ssl":513},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}