{"report_id":"6fa63923-3819-4082-92e4-c6ea9538c0f0","version":6,"status":"done","tags":[],"date":"2024-07-22T15:23:52Z","url":{"schema":"http","addr":"accessfrontwave-tab.firebaseapp.com/","fqdn":"accessfrontwave-tab.firebaseapp.com","domain":"accessfrontwave-tab.firebaseapp.com","tld":"firebaseapp.com"},"ip":{"addr":"199.36.158.100","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"final":{"url":{"schema":"about","addr":"about:neterror?e=dnsNotFound\u0026u=https%3A//onlinefrontwavedigital.info/verify\u0026c=UTF-8\u0026d=We%20can%E2%80%99t%20connect%20to%20the%20server%20at%20onlinefrontwavedigital.info.","fqdn":"","domain":"","tld":""},"title":"Server Not Found"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T08:42:44Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"accessfrontwave-tab.firebaseapp.com","ip":{"addr":"199.36.158.100","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2012-10-15","domain_rank":0,"first_seen":"2023-05-01 03:44:21","last_seen":"2024-03-24 16:04:16","alert_count":2,"request_count":1,"received_data":738,"sent_data":490,"comment":"","tags":null,"fingerprints":null},{"fqdn":"o.pki.goog","ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2016-06-13","domain_rank":0,"first_seen":"2024-04-24 13:44:57","last_seen":"2024-07-21 18:58:00","alert_count":0,"request_count":1,"received_data":712,"sent_data":331,"comment":"","tags":null,"fingerprints":null},{"fqdn":"onlinefrontwavedigital.info","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2023-04-29","domain_rank":0,"first_seen":"2023-04-29 23:43:34","last_seen":"2023-05-01 10:46:34","alert_count":1,"request_count":1,"received_data":0,"sent_data":490,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.33.119.57","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-07-21 18:21:45","alert_count":0,"request_count":8,"received_data":7096,"sent_data":2616,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":[{"sensor_name":"phishtank","sensor_type":"url","title":"","description":"PhishTank","scan_date":"2023-05-01","alert":"Other","trigger":"accessfrontwave-tab.firebaseapp.com/","verdict":"phishing","severity":"medium","comment":"Other","link":"http://phishtank.com","meta":null}]},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-22","alert":"Sinkholed","trigger":"accessfrontwave-tab.firebaseapp.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-22","alert":"Sinkholed","trigger":"onlinefrontwavedigital.info","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"about","addr":"about:neterror?e=dnsNotFound\u0026u=https%3A//onlinefrontwavedigital.info/verify\u0026c=UTF-8\u0026d=We%20can%E2%80%99t%20connect%20to%20the%20server%20at%20onlinefrontwavedigital.info.","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T04:46:10.842589Z","times_seen":13317089,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.57","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T15:23:26.355166636Z","timestamp":1721661806355,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"23C60C02F8A6F1F7FE01F9F4661CF04A03C046522201927DFA7C51CEBA6C5449\"\r\nLast-Modified: Sat, 20 Jul 2024 20:21:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=8151\r\nExpires: Mon, 22 Jul 2024 17:39:17 GMT\r\nDate: Mon, 22 Jul 2024 15:23:26 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"3bd6a6d19bf0ab70e4e0cd3d2833afe1","sha1":"0dd2ee68cf939d2482a9b30bf767f412eb97e492","sha256":"23c60c02f8a6f1f7fe01f9f4661cf04a03c046522201927dfa7c51ceba6c5449","sha512":"2e01c67cd9f5eecbeac5c7c4e463f8ad2732b6e5fd0845fd838ab0a28c7992f6d10d7066384259bcb6961c570ce6c6e053a3fb60ed0f28c74fadf86a2e61c8e5","ssdeep":"","tlshash":"3cf0750229d17d81e564211e39c8db384d30e5d8304008e0bdc047e77212bc4054d47f","first_seen":"2024-07-21T03:16:15Z","last_seen":"2024-08-19T16:13:38.634572Z","times_seen":19895,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.57","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T15:23:26.404908657Z","timestamp":1721661806404,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"778D02DECABF7DFF03BF5EC4C4EB0F03AC789E89BCFE58353C266C9D66C08834\"\r\nLast-Modified: Sat, 20 Jul 2024 19:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2888\r\nExpires: Mon, 22 Jul 2024 16:11:34 GMT\r\nDate: Mon, 22 Jul 2024 15:23:26 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"2f796f6340ac7eef4fa2891ac8f8aa1a","sha1":"27bbc7bb6314b31dcab89f198bc258b040593aa7","sha256":"778d02decabf7dff03bf5ec4c4eb0f03ac789e89bcfe58353c266c9d66c08834","sha512":"332ad8103818d77a6436e42ee756dd6f241b844dc98a7a67b52d01d5541c140e9d3ddabc315afe1c9ea0e094ffa1873c666c65f61ad0a938ca34950b4c0ef429","ssdeep":"","tlshash":"c5f0754600d4bc047fa4051b45e0c2391a30aff84e423fc039d849f1d800f796c8894d","first_seen":"2024-07-21T00:49:07Z","last_seen":"2024-08-19T16:14:10.849697Z","times_seen":22664,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.57","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T15:23:26.78653806Z","timestamp":1721661806786,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"60C84BB6C568871D3FEBE1E58C6AEDF398FA06F5F7AFC3E6087200BE0A25AD3F\"\r\nLast-Modified: Sat, 20 Jul 2024 19:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3011\r\nExpires: Mon, 22 Jul 2024 16:13:37 GMT\r\nDate: Mon, 22 Jul 2024 15:23:26 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"85a291090b5db764a5b5f1487dcb958f","sha1":"9dadf7a0a7d6be86e491a10bbbc72c84f798cab9","sha256":"60c84bb6c568871d3febe1e58c6aedf398fa06f5f7afc3e6087200be0a25ad3f","sha512":"54d2b0b7b54d879ca308df969971761efbe43c7f3ac4178738778d17c9dd8181afcacde6e9a392d04028e09823c1e47026a4585f64276592308190948173eba4","ssdeep":"","tlshash":"f9f00e170bf63d4077712a42e7e2c27e0b24ddabf801963e649442a66418bfa2fc8099","first_seen":"2024-07-21T01:22:15Z","last_seen":"2024-08-19T16:13:52.205448Z","times_seen":22689,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.57","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T15:23:26.969130748Z","timestamp":1721661806969,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"9ABD3B5F4DE73D55417DCEC4BBF72B38CC201842360ED32D763A4C65E35819D8\"\r\nLast-Modified: Sat, 20 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=3154\r\nExpires: Mon, 22 Jul 2024 16:16:00 GMT\r\nDate: Mon, 22 Jul 2024 15:23:26 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"00accea3155d7ac730285aec633670a9","sha1":"fee8ca25b96d24d0c10951f7f4ea28389020e88d","sha256":"9abd3b5f4de73d55417dcec4bbf72b38cc201842360ed32d763a4c65e35819d8","sha512":"bc807bf3a67a1a6c51ea492311a92b4e90031bc0233f7038d9605ed958583ca711b6d7fba4b3310c3773577db1f735af10596ac3e0f10392ea1f730a650979d2","ssdeep":"","tlshash":"8df00e831193bd45bab20c3559adfc683d37ff9c395045e670b042d66619ff618c09c9","first_seen":"2024-07-20T22:48:17Z","last_seen":"2024-08-19T16:14:56.436584Z","times_seen":18141,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"accessfrontwave-tab.firebaseapp.com/","fqdn":"accessfrontwave-tab.firebaseapp.com","domain":"accessfrontwave-tab.firebaseapp.com","tld":"firebaseapp.com"},"ip":{"addr":"199.36.158.100","port":0,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T15:23:27.225054501Z","timestamp":1721661807225,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: accessfrontwave-tab.firebaseapp.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=3600\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\netag: \"0559f13067b18d4e13a94a9342d1bb4dab7a48a47057710411b4c3197d31e2e4-br\"\r\nlast-modified: Sat, 29 Apr 2023 23:04:39 GMT\r\nstrict-transport-security: max-age=31556926; includeSubDomains; preload\r\naccept-ranges: bytes\r\ndate: Mon, 22 Jul 2024 15:23:27 GMT\r\nx-served-by: cache-hel1410022-HEL\r\nx-cache: MISS\r\nx-cache-hits: 0\r\nx-timer: S1721661807.092255,VS0,VE106\r\nvary: x-fh-requested-host, accept-encoding\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 113\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":113,"size_decoded":222,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"761267491b9e12d7f84d540d6a7bf2b5","sha1":"90c63c737cacafba0d5aa2fe3c6a01c7dd99b971","sha256":"e023eea9d5e3423187f59b7276d9db933ad9a24d7552e14c74983f0e9f88f744","sha512":"38eddc377ed7b468846265dbc6a4843d2146067946977f67593a3c15d15ba849c6e1e5fbb1faabd67b4933e131b7fff110997613206c20bb4c86bd23af8162a6","ssdeep":"","tlshash":"cbd0a7b784d1582ea67243612893729c4702c80513521c01f98470da25e0b15cadb158","first_seen":"2024-06-22T16:53:15Z","last_seen":"2026-01-08T18:01:59.717397Z","times_seen":5,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"phishtank","sensor_type":"url","title":"","description":"PhishTank","scan_date":"2023-05-01","alert":"Other","trigger":"accessfrontwave-tab.firebaseapp.com/","verdict":"phishing","severity":"medium","comment":"Other","link":"http://phishtank.com","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-22","alert":"Sinkholed","trigger":"accessfrontwave-tab.firebaseapp.com","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"o.pki.goog/s/wr4/wFo","fqdn":"o.pki.goog","domain":"pki.goog","tld":"goog"},"ip":{"addr":"142.250.74.131","port":0,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T15:23:27.356899234Z","timestamp":1721661807356,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST /s/wr4/wFo HTTP/1.1\r\nHost: o.pki.goog\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/ocsp-response\r\nDate: Mon, 22 Jul 2024 15:23:27 GMT\r\nCache-Control: public, max-age=14400\r\nServer: scaffolding on HTTPServer2\r\nContent-Length: 472\r\nX-XSS-Protection: 0\r\nX-Frame-Options: SAMEORIGIN\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":472,"size_decoded":472,"mime_type":"application/octet-stream","magic":"data","md5":"e0d68492c75b577df553d02aad19912b","sha1":"b5b24877a993c14f6796aa0f456545d580cc18b9","sha256":"09b529c85de449cde453ab2964b534b0d26b5bd65e794ec9c800b1dd293c2969","sha512":"cbe9c3097833eb2bbd7f1753ec7780a982e7bd97b9f04492e3ea541b3442b833d5ace6e2b9cafaf80cf544f73d278f68d2bce8ee5d3f8ed29f36402162cdc26e","ssdeep":"","tlshash":"7bf05409313078a83910486c2fe0702e1943eec69ce14d8830f448c81fc0716bd8c514","first_seen":"2024-07-22T12:03:15Z","last_seen":"2024-08-19T16:06:33.30914Z","times_seen":9,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.57","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T15:23:28.713359126Z","timestamp":1721661808713,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"151D89929B8B12751F94A9DD4FAB74F68F20AA29CA5135A3B95AEA9F366A34E7\"\r\nLast-Modified: Sat, 20 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=8233\r\nExpires: Mon, 22 Jul 2024 17:40:41 GMT\r\nDate: Mon, 22 Jul 2024 15:23:28 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"92fe046ed30974fab002b18924562af5","sha1":"a80246a7f4813076cea6cc1629667b43a094fa97","sha256":"151d89929b8b12751f94a9dd4fab74f68f20aa29ca5135a3b95aea9f366a34e7","sha512":"1c746f7c5e59f4d334b5cea7075f13a84153d3c121cdb1dd7914f36f7ae75a67d1671e2160c3dabc76aee3f490696a93cf6f1405562a205306cfc36fc5200fff","ssdeep":"","tlshash":"9ff0540352f13ec0e0b104265cfcea3d0d397ada700043c1bad541b244553db81985d9","first_seen":"2024-07-21T01:08:55Z","last_seen":"2024-08-19T16:14:02.822333Z","times_seen":22540,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.57","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T15:23:28.714304361Z","timestamp":1721661808714,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"151D89929B8B12751F94A9DD4FAB74F68F20AA29CA5135A3B95AEA9F366A34E7\"\r\nLast-Modified: Sat, 20 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=8233\r\nExpires: Mon, 22 Jul 2024 17:40:41 GMT\r\nDate: Mon, 22 Jul 2024 15:23:28 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"92fe046ed30974fab002b18924562af5","sha1":"a80246a7f4813076cea6cc1629667b43a094fa97","sha256":"151d89929b8b12751f94a9dd4fab74f68f20aa29ca5135a3b95aea9f366a34e7","sha512":"1c746f7c5e59f4d334b5cea7075f13a84153d3c121cdb1dd7914f36f7ae75a67d1671e2160c3dabc76aee3f490696a93cf6f1405562a205306cfc36fc5200fff","ssdeep":"","tlshash":"9ff0540352f13ec0e0b104265cfcea3d0d397ada700043c1bad541b244553db81985d9","first_seen":"2024-07-21T01:08:55Z","last_seen":"2024-08-19T16:14:02.822333Z","times_seen":22540,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.57","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T15:23:28.715192428Z","timestamp":1721661808715,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"151D89929B8B12751F94A9DD4FAB74F68F20AA29CA5135A3B95AEA9F366A34E7\"\r\nLast-Modified: Sat, 20 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=8233\r\nExpires: Mon, 22 Jul 2024 17:40:41 GMT\r\nDate: Mon, 22 Jul 2024 15:23:28 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"92fe046ed30974fab002b18924562af5","sha1":"a80246a7f4813076cea6cc1629667b43a094fa97","sha256":"151d89929b8b12751f94a9dd4fab74f68f20aa29ca5135a3b95aea9f366a34e7","sha512":"1c746f7c5e59f4d334b5cea7075f13a84153d3c121cdb1dd7914f36f7ae75a67d1671e2160c3dabc76aee3f490696a93cf6f1405562a205306cfc36fc5200fff","ssdeep":"","tlshash":"9ff0540352f13ec0e0b104265cfcea3d0d397ada700043c1bad541b244553db81985d9","first_seen":"2024-07-21T01:08:55Z","last_seen":"2024-08-19T16:14:02.822333Z","times_seen":22540,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.57","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-22T15:23:28.716803372Z","timestamp":1721661808716,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"151D89929B8B12751F94A9DD4FAB74F68F20AA29CA5135A3B95AEA9F366A34E7\"\r\nLast-Modified: Sat, 20 Jul 2024 20:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=8233\r\nExpires: Mon, 22 Jul 2024 17:40:41 GMT\r\nDate: Mon, 22 Jul 2024 15:23:28 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"92fe046ed30974fab002b18924562af5","sha1":"a80246a7f4813076cea6cc1629667b43a094fa97","sha256":"151d89929b8b12751f94a9dd4fab74f68f20aa29ca5135a3b95aea9f366a34e7","sha512":"1c746f7c5e59f4d334b5cea7075f13a84153d3c121cdb1dd7914f36f7ae75a67d1671e2160c3dabc76aee3f490696a93cf6f1405562a205306cfc36fc5200fff","ssdeep":"","tlshash":"9ff0540352f13ec0e0b104265cfcea3d0d397ada700043c1bad541b244553db81985d9","first_seen":"2024-07-21T01:08:55Z","last_seen":"2024-08-19T16:14:02.822333Z","times_seen":22540,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"onlinefrontwavedigital.info/verify","fqdn":"onlinefrontwavedigital.info","domain":"onlinefrontwavedigital.info","tld":"info"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-07-22T15:23:27.451Z","timestamp":1721661807451,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /verify HTTP/1.1\r\nHost: onlinefrontwavedigital.info\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-04T04:46:10.842589Z","times_seen":13317089,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-07-22","alert":"Sinkholed","trigger":"onlinefrontwavedigital.info","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}