| aosafrica.co.za/5j1ae/ApMYYqsc6Q3p5Y/ | 41.185.110.59 | 200 OK | 20 kB |
URL User Request GET HTTP/1.1aosafrica.co.za/5j1ae/ApMYYqsc6Q3p5Y/ IP41.185.110.59:80
File typeHTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (9588), with CRLF line terminators Hash61fa182b9575ad3576f9b947818743e0 258003548f5f7c3f1ba0f3d6b690475e0c7cfabd 0a3275de07c06a1017989c53a3984d1996ba28ef41b4f3617bf30dfdd6183dc3
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
NIDS | Severity | Alert | suricata | high | URLhaus Known malware download URL detected (1915365) |
GET /5j1ae/ApMYYqsc6Q3p5Y/ HTTP/1.1
Host: aosafrica.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Pragma: no-cache
Content-Type: text/html;charset=UTF-8
Expires: Sat, 20 Apr 2024 12:57:24 GMT
Last-Modified: Sat, 20 Apr 2024 12:57:24 GMT
Server: Microsoft-IIS/10.0
Set-Cookie: 6623bbb45a6b4=1713617844; expires=Sat, 20-Apr-2024 12:58:24 GMT; Max-Age=60; path=/
X-Powered-By-Plesk: PleskWin
Date: Sat, 20 Apr 2024 12:57:24 GMT
Content-Length: 19835
|
|
| www.google.com/images/branding/googlelogo/2x/googlelogo_color_120x44dp.png | 142.250.74.164 | 200 OK | 5.1 kB |
URL GET HTTP/2www.google.com/images/branding/googlelogo/2x/googlelogo_color_120x44dp.png IP142.250.74.164:443
Requested byhttp://aosafrica.co.za/5j1ae/ApMYYqsc6Q3p5Y/ CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73 ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
File typePNG image data, 240 x 88, 8-bit/color RGBA, non-interlaced Hash8d2b7f3d00f50b8aebb7d1c002c64ca1 b3d5a78c18020868d322a0ac54c9d8e45a59a3b3 29c50fa4422ac0a690af5b0987dee6a030a7eeaafa9dda8543cf022368f545aa
GET /images/branding/googlelogo/2x/googlelogo_color_120x44dp.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: http://aosafrica.co.za/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 5087
date: Sat, 20 Apr 2024 12:57:24 GMT
expires: Sat, 20 Apr 2024 12:57:24 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ssl.gstatic.com/images/branding/product/2x/hh_drive_24dp.png | 142.250.74.131 | 200 OK | 1.4 kB |
URL GET HTTP/2ssl.gstatic.com/images/branding/product/2x/hh_drive_24dp.png IP142.250.74.131:443
Requested byhttp://aosafrica.co.za/5j1ae/ApMYYqsc6Q3p5Y/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashe33f62c65be5d812af2bb339ad27c18b a32858e4d72771e0fd85a2ac86dce05c09b51a89 52e3b7ed5e8100ad9c81c95f181d5feb617960dad651e0ec9ae313278dcafaf7
GET /images/branding/product/2x/hh_drive_24dp.png HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://aosafrica.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1406
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 03:03:41 GMT
expires: Wed, 16 Apr 2025 03:03:41 GMT
cache-control: public, max-age=31536000
age: 381223
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ssl.gstatic.com/images/branding/product/2x/hh_drive_96dp.png | 142.250.74.131 | 200 OK | 3.2 kB |
URL GET HTTP/2ssl.gstatic.com/images/branding/product/2x/hh_drive_96dp.png IP142.250.74.131:443
Requested byhttp://aosafrica.co.za/5j1ae/ApMYYqsc6Q3p5Y/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typePNG image data, 192 x 192, 8-bit colormap, non-interlaced Hash19e8bf7bac9b6574d8888e3834a31ebe 0e51db1a9561498234e51d7f067a25869913a329 cf1af6a9f65f77148ff375b65410da631d96774ad33042b88f28e2d5f4b4cecc
GET /images/branding/product/2x/hh_drive_96dp.png HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://aosafrica.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3187
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 18:22:55 GMT
expires: Fri, 18 Apr 2025 18:22:55 GMT
cache-control: public, max-age=31536000
age: 153269
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|