{"report_id":"62ccb2de-f62d-4d5f-8893-33d5504ef783","version":0,"status":"done","tags":[],"date":"2026-06-28T11:13:09Z","url":{"schema":"https","addr":"aavea.cfd/","fqdn":"aavea.cfd","domain":"aavea.cfd","tld":"cfd"},"ip":{"addr":"104.21.26.24","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"aavea.cfd/","fqdn":"aavea.cfd","domain":"aavea.cfd","tld":"cfd"},"title":"aavea.cfd/","dom":{"size":265,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with no line terminators","md5":"7a639d7b371f90483136b8f8a922281c","sha1":"844e1dc3b22436922ff9e1572704355f84ba2114","sha256":"28fd08bf067ef535f2077a18b52e33248f3e6abcc4d3fe6808dc63a068852ddc","sha512":"a6ca5ef47003d05368bb4e8e435e7f9d32b42c5a7a739a9b2096c801bcb6c9f4259cc623b73effcbd504e1c6c1300d16a55c772d1d980201610fc07303809e9f","ssdeep":"","tlshash":"72d09567dcd1c48c05708af85df1d15c090ddd5ce712fc707dd011880ed53958d93494","dom_hash":"domhash82c9e42589685a6ee40295021754217e","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"aavea.cfd/","fqdn":"aavea.cfd","domain":"aavea.cfd","tld":"cfd"},"ip":{"addr":"104.21.26.24","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-02T11:13:09Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"aavea.cfd","ip":{"addr":"104.21.26.24","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-06-22","domain_rank":0,"first_seen":"2026-06-28T10:57:13.292952Z","last_seen":"2026-06-28T10:57:13.292952Z","alert_count":0,"request_count":3,"received_data":329749,"sent_data":1401,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"aavea.cfd/6d654928.js","fqdn":"aavea.cfd","domain":"aavea.cfd","tld":"cfd"},"ip":{"addr":"104.21.26.24","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"bbe9f9f77f9c5acaf17744d3e5b3b244","sha1":"844b9a9b9aaffec70bda411967ad7a828f932dc8","sha256":"6d654928cdb9e054496ab88a724b08c0024212a24e051cc2ea999fa4ce36b83a","sha512":"2e1d64f84f97a958317a2a75b49ce4e591523ec5f6dff6e04bd62746286802e04a28918da28937c1e8e20224e824b6619121f660146017d013865c2be2fe654f","ssdeep":"3072:9g7k1BdBpB7u1LhaWW+0VVHZPvBgDFh+zKkx34VfwK6WHY6HpJ4MyDBeuJP8NQm3:BBdnIEhbOVfx3HpCR1b6T","tlshash":"21644a433f877c1727b832a6819fa996404ecb41fc84b8c9f52e9bd855d651883fcb68","size":327534,"data":"","first_seen":"2026-06-28T10:57:19.009844Z","last_seen":"2026-06-28T11:13:10.199263Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aavea.cfd/","fqdn":"aavea.cfd","domain":"aavea.cfd","tld":"cfd"},"ip":{"addr":"104.21.26.24","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"d447cd6c06a6bd61e8cb929638d8068b","sha1":"cd7de0e395258bbf15a2e2601bfa9b4559434590","sha256":"fe7205b71c9fcf6e72b1502a68273a275b6574e74da391affd22c5f1b25f990b","sha512":"e299519efb5ae3bc984708c15612893aedc06064c757dd3177d4c82524819edfc9360d3704fe22af7a5851d1bcdb1479f89156507853b5ba6665a93e647a4d2c","ssdeep":"3072:ylgyLT7/LYedHdshO2cr0ClOCXIdqXGok8G9Eu+rZ6CF5GdCXI7qWG9jZg4wzCp7:+guPBd9sEj0GrOxmoyT","tlshash":"b9f32ad44ae714b81467e96a0d0f440bffba1c37124dee45bf8c9a902f23b158de98d6","size":157747,"data":"","first_seen":"2026-06-28T10:57:19.011373Z","last_seen":"2026-06-28T11:13:10.200465Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aavea.cfd/","fqdn":"aavea.cfd","domain":"aavea.cfd","tld":"cfd"},"ip":{"addr":"104.21.26.24","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"29377d0b723db06bbb969474eb442abc","sha1":"0b541ccd0f776b8d819446c0a57583b4a62b4725","sha256":"35958e21858a85ca0c84c37dcab75a0b159c8958ec30fe9c2325a74f128c5367","sha512":"258a827785b212cdb904bbfaf44814a3999c0e1e548c900c2c8ee5075341a3bcb546a62fc889618823e655e26a12d0726d91a4ac1a9b5adc21fc8435d76554d9","ssdeep":"","tlshash":"0e1188886bb780a809272b280f8fd08414d5f10b2796dd8cb0ce45a04fc24244afcfae","size":923,"data":"","first_seen":"2026-06-07T09:22:47.026797Z","last_seen":"2026-06-28T15:19:43.145486Z","times_seen":51,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"aavea.cfd/","fqdn":"aavea.cfd","domain":"aavea.cfd","tld":"cfd"},"ip":{"addr":"104.21.26.24","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-28T11:12:45.852Z","timestamp":1782645165852,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aavea.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 23:28:12 GMT","end":"Sun, 20 Sep 2026 00:26:57 GMT"},"fingerprint":{"sha1":"5D:A1:5F:CE:59:A0:7B:36:9E:10:E0:D4:C2:77:54:37:4A:BF:41:E4","sha256":"4E:AE:7E:EC:F1:4E:31:40:E5:36:91:5F:BF:BB:86:6F:9E:0F:A3:02:62:3F:55:19:9D:7D:0E:0B:A2:A0:0C:E9"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: aavea.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sun, 28 Jun 2026 11:12:46 GMT\r\ncontent-type: text/html;charset=utf-8\r\nx-ratelimit-limit: 100, 100;w=60\r\nx-ratelimit-remaining: 99\r\nx-ratelimit-reset: 14\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=V%2BKO25X6Xml49wsK4druDdmDQKcL6OLlK25TKTR97f7i8UldW4arVAkAMWJK8aGZUivVI%2Fai5wBVRzCsKbZ6q%2BB6ottQtxofm4ZG6FMC11Nv8wpRCL5%2Bszrr9qg%3D\"}]}\r\ncontent-encoding: zstd\r\nserver: cloudflare\r\ncf-ray: a12c421f795b5ebd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":284,"size_decoded":882,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with no line terminators","md5":"9184fa341000ec429a69c304df8164aa","sha1":"f5b1a53527bf3c7c47e0334582eddf79e60abee0","sha256":"b2aa692668704a20645b34927677d7dd8b33986e2d8896586ae55dfc88f9d37d","sha512":"d51c8ea0f58d59f810a80dc62fd6dcace66a9440aeb8d845a9302aa7ca9ffc117689e587e97970595b3bccb609063a53cb7df307f473b20e56ec211bffa8a5d5","ssdeep":"","tlshash":"eed0eba7ecd1848c05305af85cf1d0ac0a098a9cb302ec603dd021980ec03598d43890","first_seen":"2026-06-28T10:57:19.005263Z","last_seen":"2026-06-28T11:13:10.198635Z","times_seen":6,"resource_available":true,"data":null}},"time_used":305,"timings":{"blocked":-1,"dns":66,"connect":1,"send":0,"wait":160,"receive":-1,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aavea.cfd/6d654928.js","fqdn":"aavea.cfd","domain":"aavea.cfd","tld":"cfd"},"ip":{"addr":"104.21.26.24","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://aavea.cfd/","date":"2026-06-28T11:12:46.452Z","timestamp":1782645166452,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aavea.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 23:28:12 GMT","end":"Sun, 20 Sep 2026 00:26:57 GMT"},"fingerprint":{"sha1":"5D:A1:5F:CE:59:A0:7B:36:9E:10:E0:D4:C2:77:54:37:4A:BF:41:E4","sha256":"4E:AE:7E:EC:F1:4E:31:40:E5:36:91:5F:BF:BB:86:6F:9E:0F:A3:02:62:3F:55:19:9D:7D:0E:0B:A2:A0:0C:E9"}}},"request":{"raw":"GET /6d654928.js HTTP/1.1\r\nHost: aavea.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://aavea.cfd/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sun, 28 Jun 2026 11:12:46 GMT\r\ncontent-type: application/javascript\r\ncache-control: public, max-age=14400, s-maxage=60\r\nlast-modified: Sun, 28 Jun 2026 10:56:41 GMT\r\ncontent-encoding: gzip\r\nvary: Accept-Encoding\r\nage: 965\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RQprsfMRym71lX%2F4p8SdGbXZfbVnja1ZxjVA1veTDUsL%2FOjal7sGpcT9jK8gO7jeVws0WhPaqG0f2o2K1C8qo0HXTR3PFEGXZR%2Bl%2B4%2BDvxJmbquyBJj6MyI8YBM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: a12c42228f1a76ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":327534,"size_decoded":133084,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"bbe9f9f77f9c5acaf17744d3e5b3b244","sha1":"844b9a9b9aaffec70bda411967ad7a828f932dc8","sha256":"6d654928cdb9e054496ab88a724b08c0024212a24e051cc2ea999fa4ce36b83a","sha512":"2e1d64f84f97a958317a2a75b49ce4e591523ec5f6dff6e04bd62746286802e04a28918da28937c1e8e20224e824b6619121f660146017d013865c2be2fe654f","ssdeep":"3072:9g7k1BdBpB7u1LhaWW+0VVHZPvBgDFh+zKkx34VfwK6WHY6HpJ4MyDBeuJP8NQm3:BBdnIEhbOVfx3HpCR1b6T","tlshash":"21644a433f877c1727b832a6819fa996404ecb41fc84b8c9f52e9bd855d651883fcb68","first_seen":"2026-06-28T10:57:19.009844Z","last_seen":"2026-06-28T11:13:10.199263Z","times_seen":6,"resource_available":true,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":7,"send":0,"wait":21,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"aavea.cfd/favicon.ico","fqdn":"aavea.cfd","domain":"aavea.cfd","tld":"cfd"},"ip":{"addr":"104.21.26.24","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://aavea.cfd/","date":"2026-06-28T11:12:46.765Z","timestamp":1782645166765,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"aavea.cfd","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jun 2026 23:28:12 GMT","end":"Sun, 20 Sep 2026 00:26:57 GMT"},"fingerprint":{"sha1":"5D:A1:5F:CE:59:A0:7B:36:9E:10:E0:D4:C2:77:54:37:4A:BF:41:E4","sha256":"4E:AE:7E:EC:F1:4E:31:40:E5:36:91:5F:BF:BB:86:6F:9E:0F:A3:02:62:3F:55:19:9D:7D:0E:0B:A2:A0:0C:E9"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: aavea.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://aavea.cfd/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\ndate: Sun, 28 Jun 2026 11:12:46 GMT\r\ncontent-type: text/plain;charset=utf-8\r\ncontent-length: 9\r\ncache-control: no-store\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NK0chQttHrA6s0fDD6pT0RvpA22%2BHJ9LomcV3zTT9eoa2goRY93D1XKJnvuikce439hZFlE8P6tBmoRbu4iUSAROfj9Z0ldNlqaKEIG525T9FTbK2nWgd0xkR6I%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: a12c42244cc776ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9,"size_decoded":581,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"9d1ead73e678fa2f51a70a933b0bf017","sha1":"d205cbd6783332a212c5ae92d73c77178c2d2f28","sha256":"0019dfc4b32d63c1392aa264aed2253c1e0c2fb09216f8e2cc269bbfb8bb49b5","sha512":"935b3d516e996f6d25948ba8a54c1b7f70f7f0e3f517e36481fdf0196c2c5cfc2841f86e891f3df9517746b7fb605db47cdded1b8ff78d9482ddaa621db43a34","ssdeep":"","tlshash":"a250000c0003c3cc0000003030c0000000000300300000300000c000000000000c000c","first_seen":"2023-03-08T03:03:03Z","last_seen":"2026-06-28T16:14:11.536488Z","times_seen":85632,"resource_available":true,"data":null}},"time_used":157,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":157,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}