{"report_id":"87387abf-4744-44c6-824f-017f4a3e6f82","version":6,"status":"done","tags":[],"date":"2024-01-06T09:52:11Z","url":{"schema":"http","addr":"196.192.79.95:8717/login","fqdn":"196.192.79.95","domain":"196.192.79.95","tld":""},"ip":{"addr":"196.192.79.95","port":0,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"final":{"url":{"schema":"http","addr":"196.192.79.95:8717/login","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"title":"NLMIS"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T04:52:17Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"196.192.79.95:8717","ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":11,"request_count":11,"received_data":2272930,"sent_data":4070,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":235,"first_seen":"2015-04-17 22:46:33","last_seen":"2024-01-05 05:09:05","alert_count":0,"request_count":1,"received_data":5221,"sent_data":466,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-09-09 02:40:21","last_seen":"2024-01-05 10:49:07","alert_count":0,"request_count":4,"received_data":165207,"sent_data":2206,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null},{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"196.192.79.95:8717/runtime.09e0a3f045972ef7.js","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"407e7277f2139ab81e06fd833b0bb8d1","sha1":"6720402a0d1274e0e7a843d4e16c3b4fd0ea8ecf","sha256":"03ffea4d1d965ab689ae55759c48d7137fd154e76193b6c059ae49b3db900e30","sha512":"be89ec7c5c117b0dc2d26fce495541ea6ab081741d6a9bce3069c84779a2c6b13e5fa36d25dad862df69f68d50458152b8ee219a95ebae31915b2c76e3ad62f5","ssdeep":"","tlshash":"4761c8f62624e6bb26b4d4c1543ed4f666142133016bbcb1ab4bde6ee924de04821ff1","size":3138,"data":"","first_seen":"2024-08-20T13:47:55.74632Z","last_seen":"2024-08-20T13:47:55.74632Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"eventHandler","is_inline":false,"md5":"7c3c3ddeb80438dcbb3d081d2d00e152","sha1":"5a4016732ee72ec77b4f6ab17047bcea6d2ea34d","sha256":"321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187","sha512":"b252f7dc795284fe8ce404711809130d8e16670a8e49b271f9a24b04a542a0fccb7a8c7238c12b37db35fe73a2fbf1cdb374468574db4e6d39975a17dca547a3","ssdeep":"","tlshash":"807000f0003000030003c30000333cf300000c0fc0ccc3ccfc0000c000c00000000c33","size":16,"data":"","first_seen":"2023-04-10T15:57:29Z","last_seen":"2026-04-04T19:46:31.580724Z","times_seen":233723,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/polyfills.fb1263731a44a919.js","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"41453afcb7795beef2a0aa6a87d24bb9","sha1":"ccadc42a52540d053b9b7a5484871a7d776e9b23","sha256":"cb3e592bfc74534652fb637803bd2601f86c0c67d9c40044d613ad8488301e52","sha512":"6a67e07cc5a6e7497980eebf619462d507da7a2bd449ff63d7c28b9fa1f71a64dea3ea02d49ead7c3786788e989974e512e53c22687efc74bf7fae414690167c","ssdeep":"768:QT1F24GL3V61SKhh21ll01sCmArvXV+SIM1Iih+GororzOIUresogpJSbZOfXImw:Y+vU6E6tSTQ+","tlshash":"7ce20ad973d1b4b687fa59f1c03b4007f63669a07c4c88d8f15c88ea397b049a5a6f2d","size":33883,"data":"","first_seen":"2024-08-20T13:47:55.758865Z","last_seen":"2024-08-20T13:47:55.758865Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/scripts.8d058c5ee1c06dfe.js","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"995e63db2178687e0f5e8c37cf793e18","sha1":"16937971b677072837f13deffbf39d33138cc441","sha256":"eaf4937470a39a4a78969582f32cd2b7fd09b63057627218c70fb350975f436c","sha512":"f3054c81ea4bcb5791595e01e9f3cd89e53fa846bd26a3fcce1e7fbb5ada97bc07e2030d1973c4a257f873cdad120da9c5635c7ffffcc5e8166d5d02fe0ecda0","ssdeep":"6144:DPJBD7deO9BJiNrIkDFO+3jcJXfX9KTD+IC:DPxfJizs+3jcx9KTg","tlshash":"2eb4f84af25a38738453125cd86f260752726e99498d846cf8bdd8f72c99e4832eff34","size":518169,"data":"","first_seen":"2024-08-20T13:47:55.760628Z","last_seen":"2024-08-20T13:47:55.760628Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/main.98edc29dabd8f300.js","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"53025a34c248d02893839762b26aaf57","sha1":"be3024177413ef01885eaf583e4d06083c167e64","sha256":"16511f4267cfc2e135ca4185305a70c2cc2f79b36780fc1bd3ebe0661a7b7bb7","sha512":"9acc65bd881cbf5355174204965a8db8afc60e7cb43e774c2a4e8fde2290c7beb7d31d5c53bef7c74b9fee4b9aa237f266f2861e6ee81910426dee8e4e229aab","ssdeep":"49152:2BWYYOxwG3q00mFqBCWXX5wmvGBYjQoCSj16LRn1SaDHyNvBVopaPj1irZXueqTd:FyoC378","tlshash":"16167ca5b392747152d740ba847b0106b139644ab409849cfaacccde6fadd8c627ff7c","size":4069351,"data":"","first_seen":"2024-08-20T13:47:55.761403Z","last_seen":"2024-08-20T13:47:55.761403Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"196.192.79.95:8717/login","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-01-06T09:51:42.261Z","timestamp":1704534702261,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /login HTTP/1.1\r\nHost: 196.192.79.95:8717\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.10\r\nDate: Sat, 06 Jan 2024 09:51:42 GMT\r\nContent-Type: text/html\r\nLast-Modified: Fri, 05 Jan 2024 14:37:01 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"6598140d-3a9a\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3962,"size_decoded":15002,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (7161)","md5":"4ec27422822f5fc7cf4394935d0e26f9","sha1":"38a4e24632b89ffd5fa71490724ed2858b95aaa6","sha256":"c03bc42b76161d72cb8cc7526cee87126a9ef37136ac87191134c4d889d1cff1","sha512":"e6efa7586b262ca8db1889429c895f8b21dc47d267f35a7e1e7a4271d993d2d1ffea3b5eb066227aff6bc799c3cef5140f16c4bb4cd1f1b59243de7ea1abe922","ssdeep":"384:RbD+DE89r6FVigdRuK/8E9bb0/OfrW4cvK:RbD+DE89r6FVigdRuK/8E9bbuOD4i","tlshash":"75625150d426b0559a938ce771c8fe27b90e4012c86a8567f9ff1a6cfecb86703d5788","first_seen":"2024-08-20T13:47:55.744565Z","last_seen":"2024-08-20T13:47:55.744565Z","times_seen":1,"resource_available":false,"data":null}},"time_used":633,"timings":{"blocked":204,"dns":0,"connect":213,"send":0,"wait":214,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/animate.css/4.0.0/animate.min.css","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:42.805Z","timestamp":1704534702805,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"sni.cloudflaressl.com","organization":"Cloudflare, Inc."},"issuer":{"commonName":"Cloudflare Inc ECC CA-3","organization":"Cloudflare, Inc."},"validity":{"start":"Mon, 03 Jul 2023 00:00:00 GMT","end":"Tue, 02 Jul 2024 23:59:59 GMT"},"fingerprint":{"sha1":"7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D","sha256":"D9:9E:DA:D7:6F:5A:E0:87:16:F3:3E:A0:A8:34:8B:84:B7:B0:98:30:2D:18:D8:53:E6:3C:09:06:19:48:07:54"}}},"request":{"raw":"GET /ajax/libs/animate.css/4.0.0/animate.min.css HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 06 Jan 2024 09:51:42 GMT\r\ncontent-type: text/css; charset=utf-8\r\ncontent-length: 4216\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"5eb436a8-11848\"\r\nlast-modified: Thu, 07 May 2020 16:26:16 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 106223\r\nexpires: Thu, 26 Dec 2024 09:51:42 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=3Rh09KvtsWsytTJ6eLrdh%2FZRLZPzP%2BTRwnonG5VHQhTtYSGvDUVoKTA7YoOzjPfZBIT1DjGo9kMREpLW4U6pRtg4wLSKon5mJxi%2FqmSXIbC3t4TG4w7kt%2Bpk7IENAuJROitcl2w%2F\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\ncf-ray: 84131064bf4156a5-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4216,"size_decoded":71752,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (65346)","md5":"39aca93cfd689b19cc6241e859642a92","sha1":"5022a36b3d077c80b0b4a550ddfb280aae28dafe","sha256":"eb2798553d86c6b1806d208320f645bd79eab0cebcf22176bddbc648e8f3ccd4","sha512":"44cfdda0f629f93e50d366d8255962e32680a9fa4530819735b7453492517625a1e26ba66864550ae5cf0f87a185e2d4a804e6fdab498ceb9de810b7c7e28f25","ssdeep":"1536:f6uNQ3fdPwwanleMf72yMPkZ8PFwh1nAukdDO3Xyr5Ir5eh0dTo:KkZgwh1nAukdDO3Xyr5Ir5eh0dTo","tlshash":"226329ae4891128990230f6787cd5ea84b3dc6a355721cee33552c0b8b46fee73de617","first_seen":"2023-04-07T07:34:50Z","last_seen":"2026-04-04T19:25:50.271386Z","times_seen":5428,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":26,"dns":2,"connect":1,"send":0,"wait":16,"receive":5,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/runtime.09e0a3f045972ef7.js","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:42.808Z","timestamp":1704534702808,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /runtime.09e0a3f045972ef7.js HTTP/1.1\r\nHost: 196.192.79.95:8717\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/login\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.10\r\nDate: Sat, 06 Jan 2024 09:51:42 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 05 Jan 2024 14:36:59 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"6598140b-c42\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1749,"size_decoded":3138,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (3138), with no line terminators","md5":"407e7277f2139ab81e06fd833b0bb8d1","sha1":"6720402a0d1274e0e7a843d4e16c3b4fd0ea8ecf","sha256":"03ffea4d1d965ab689ae55759c48d7137fd154e76193b6c059ae49b3db900e30","sha512":"be89ec7c5c117b0dc2d26fce495541ea6ab081741d6a9bce3069c84779a2c6b13e5fa36d25dad862df69f68d50458152b8ee219a95ebae31915b2c76e3ad62f5","ssdeep":"","tlshash":"4761c8f62624e6bb26b4d4c1543ed4f666142133016bbcb1ab4bde6ee924de04821ff1","first_seen":"2024-08-20T13:47:55.74632Z","last_seen":"2024-08-20T13:47:55.74632Z","times_seen":1,"resource_available":true,"data":null}},"time_used":212,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":212,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:43.006Z","timestamp":1704534703006,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 20 Nov 2023 08:08:49 GMT","end":"Mon, 12 Feb 2024 08:08:48 GMT"},"fingerprint":{"sha1":"5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1","sha256":"80:CC:7B:86:3B:74:87:87:51:57:4E:D5:46:B4:9E:75:8C:D9:BA:D5:3D:29:B0:19:02:4F:62:61:AA:42:DF:C9"}}},"request":{"raw":"GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: http://196.192.79.95:8717\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 11028\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 06 Jan 2024 09:10:06 GMT\r\nexpires: Sun, 05 Jan 2025 09:10:06 GMT\r\ncache-control: public, max-age=31536000\r\nage: 2497\r\nlast-modified: Wed, 11 May 2022 19:24:50 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":11028,"size_decoded":11028,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 11028, version 1.0","md5":"1f6d3cf6d38f25d83d95f5a800b8cac3","sha1":"279f300ca2cbbdf9f5036ef2f438607fbf377daa","sha256":"796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f","sha512":"716305f4d2582683b64c61b5e2390983579ea0fb33c936dd3ea8362872176625fbcb6f5ad18d2abf85da82d14c33a9640dfc5749922cb2fc079ddf37864f361f","ssdeep":"192:4oijUxKA0B3BxJPeLrh00JWNhi5A5HWdZ6SfroKthzwbMcYfQKvwpFVX2T+:Nx4bexHAE6STltlwbMcovaET+","tlshash":"9032cf5eaa417172974b5791e296fbc0e627186438fb02fef85185bbc4045e437092be","first_seen":"2023-04-05T08:50:36Z","last_seen":"2026-04-04T19:44:46.738066Z","times_seen":73262,"resource_available":false,"data":null}},"time_used":133,"timings":{"blocked":60,"dns":1,"connect":7,"send":0,"wait":9,"receive":1,"ssl":52},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/assets/fonts/material.css","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:42.997Z","timestamp":1704534702997,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /assets/fonts/material.css HTTP/1.1\r\nHost: 196.192.79.95:8717\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/login\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.10\r\nDate: Sat, 06 Jan 2024 09:51:43 GMT\r\nContent-Type: text/css\r\nLast-Modified: Fri, 05 Jan 2024 14:36:59 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"6598140b-185f\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":860,"size_decoded":6239,"mime_type":"text/css","magic":"ASCII text","md5":"90d75b05ec8477357555b02ba6ad0c37","sha1":"6f77a9fa3575369897872ac00e9ac51600d00358","sha256":"dd01dd51ed7ce69e6a1f4d6705333afb76604b55426bd1240ee93b6c9e78e635","sha512":"1c7d1785e83ab9527ea6342c9a28db9ffbef6fccc76fc45f03aa9b7c67e68282c14e99e5a32bad742bbc9c7b5c13c1380fec0acea5acf04cf701c415f2ef8339","ssdeep":"192:vGAb67pYITL4c6i/WFgiqGTypOnTmwFZb:XOF6K6L","tlshash":"83d18890081b5400eb534c9577cf3f2a6d4d65162146ca79bffe185cacebc2653a8b8e","first_seen":"2024-08-20T13:47:55.757947Z","last_seen":"2024-08-20T13:47:55.757947Z","times_seen":1,"resource_available":false,"data":null}},"time_used":620,"timings":{"blocked":208,"dns":2,"connect":203,"send":0,"wait":206,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/polyfills.fb1263731a44a919.js","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:42.810Z","timestamp":1704534702810,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /polyfills.fb1263731a44a919.js HTTP/1.1\r\nHost: 196.192.79.95:8717\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/login\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.10\r\nDate: Sat, 06 Jan 2024 09:51:43 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 05 Jan 2024 14:36:59 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"6598140b-845b\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13431,"size_decoded":33883,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (33883), with no line terminators","md5":"41453afcb7795beef2a0aa6a87d24bb9","sha1":"ccadc42a52540d053b9b7a5484871a7d776e9b23","sha256":"cb3e592bfc74534652fb637803bd2601f86c0c67d9c40044d613ad8488301e52","sha512":"6a67e07cc5a6e7497980eebf619462d507da7a2bd449ff63d7c28b9fa1f71a64dea3ea02d49ead7c3786788e989974e512e53c22687efc74bf7fae414690167c","ssdeep":"768:QT1F24GL3V61SKhh21ll01sCmArvXV+SIM1Iih+GororzOIUresogpJSbZOfXImw:Y+vU6E6tSTQ+","tlshash":"7ce20ad973d1b4b687fa59f1c03b4007f63669a07c4c88d8f15c88ea397b049a5a6f2d","first_seen":"2024-08-20T13:47:55.758865Z","last_seen":"2024-08-20T13:47:55.758865Z","times_seen":1,"resource_available":true,"data":null}},"time_used":809,"timings":{"blocked":199,"dns":0,"connect":202,"send":0,"wait":209,"receive":199,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/styles.bea913b0bdac482c.css","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:43.003Z","timestamp":1704534703003,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /styles.bea913b0bdac482c.css HTTP/1.1\r\nHost: 196.192.79.95:8717\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/login\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.10\r\nDate: Sat, 06 Jan 2024 09:51:43 GMT\r\nContent-Type: text/css\r\nLast-Modified: Fri, 05 Jan 2024 14:36:59 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"6598140b-7192a\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89226,"size_decoded":465194,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"54cd11ce09faf5f210801e6e0367334e","sha1":"70dd7d5893503d522a1615c1b567b74d4918e68e","sha256":"d6f63cafd04b23e122405b5a0c4aa77d87bc2f1072456039b0de0d41c2de78ce","sha512":"9484594bc0ce082661115a1ec52cb7a7d115fe2ecb0cfc1b1259ff67a2f8864b7ffad950fdd7d8e7b924e0fc769ed9bd1a5cb5b7d6a13551ec2f92be7ffbe13c","ssdeep":"6144:0p2MrwWUWs0WzkSunk9DfZx7f5Gpz600I4ThLWJi1d6yY88f65Wgsz2:0p2MrwWUWsV7f57hLWJjPo","tlshash":"22a4a5d2f240302afd6780a595d0ffbd9d6e7581d7124ea6f0476b3843cadda046ea8c","first_seen":"2024-08-20T13:47:55.759549Z","last_seen":"2024-08-20T13:47:55.759549Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1010,"timings":{"blocked":195,"dns":0,"connect":202,"send":0,"wait":207,"receive":406,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/scripts.8d058c5ee1c06dfe.js","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:42.812Z","timestamp":1704534702812,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /scripts.8d058c5ee1c06dfe.js HTTP/1.1\r\nHost: 196.192.79.95:8717\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/login\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.10\r\nDate: Sat, 06 Jan 2024 09:51:43 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 05 Jan 2024 14:36:59 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"6598140b-7e819\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":164827,"size_decoded":518169,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"995e63db2178687e0f5e8c37cf793e18","sha1":"16937971b677072837f13deffbf39d33138cc441","sha256":"eaf4937470a39a4a78969582f32cd2b7fd09b63057627218c70fb350975f436c","sha512":"f3054c81ea4bcb5791595e01e9f3cd89e53fa846bd26a3fcce1e7fbb5ada97bc07e2030d1973c4a257f873cdad120da9c5635c7ffffcc5e8166d5d02fe0ecda0","ssdeep":"6144:DPJBD7deO9BJiNrIkDFO+3jcJXfX9KTD+IC:DPxfJizs+3jcx9KTg","tlshash":"2eb4f84af25a38738453125cd86f260752726e99498d846cf8bdd8f72c99e4832eff34","first_seen":"2024-08-20T13:47:55.760628Z","last_seen":"2024-08-20T13:47:55.760628Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1306,"timings":{"blocked":194,"dns":0,"connect":203,"send":0,"wait":205,"receive":704,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/main.98edc29dabd8f300.js","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:42.814Z","timestamp":1704534702814,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /main.98edc29dabd8f300.js HTTP/1.1\r\nHost: 196.192.79.95:8717\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/login\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.10\r\nDate: Sat, 06 Jan 2024 09:51:43 GMT\r\nContent-Type: application/javascript\r\nLast-Modified: Fri, 05 Jan 2024 14:36:59 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"6598140b-3e17e7\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1264214,"size_decoded":4069351,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"53025a34c248d02893839762b26aaf57","sha1":"be3024177413ef01885eaf583e4d06083c167e64","sha256":"16511f4267cfc2e135ca4185305a70c2cc2f79b36780fc1bd3ebe0661a7b7bb7","sha512":"9acc65bd881cbf5355174204965a8db8afc60e7cb43e774c2a4e8fde2290c7beb7d31d5c53bef7c74b9fee4b9aa237f266f2861e6ee81910426dee8e4e229aab","ssdeep":"49152:2BWYYOxwG3q00mFqBCWXX5wmvGBYjQoCSj16LRn1SaDHyNvBVopaPj1irZXueqTd:FyoC378","tlshash":"16167ca5b392747152d740ba847b0106b139644ab409849cfaacccde6fadd8c627ff7c","first_seen":"2024-08-20T13:47:55.761403Z","last_seen":"2024-08-20T13:47:55.761403Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1911,"timings":{"blocked":200,"dns":0,"connect":210,"send":0,"wait":206,"receive":1295,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/favicon.ico","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:45.116Z","timestamp":1704534705116,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 196.192.79.95:8717\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/login\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.10\r\nDate: Sat, 06 Jan 2024 09:51:45 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 202344\r\nLast-Modified: Fri, 05 Jan 2024 14:36:59 GMT\r\nConnection: keep-alive\r\nETag: \"6598140b-31668\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":202344,"size_decoded":202344,"mime_type":"image/x-icon","magic":"Targa image data - Map 32 x 37114 x 1 +1","md5":"d01207fee74ee74c649eb0848d42876a","sha1":"1928b6841674798f34953c850aa9f7d813d68897","sha256":"88d4bf05c71526a44ed18a951d706a71c6b64e812cf7f1bf6afa6d8e59b2023f","sha512":"f93f060b0d46a5b4691afde2cc3c3f9c012a7a89761d2ee0b40f9b9b7c4e4589a139883d78bbb249d8ca4d5f3b25028349a4903ecfbcfd4bbe4f9d3c94f2b717","ssdeep":"3072:kMzck0SWEm6HB9VyZAYdFfR+5zevkm5KBkVssH6otYPpLYb221FJ/pD:rQkwIvVyZ9R+ikm5PVDaotoBRgj","tlshash":"b714e0943583e81de86e0f393677c570d3322cba9d61d111e8e27e1fe9b726d053898a","first_seen":"2024-08-20T13:47:55.762318Z","last_seen":"2024-08-20T13:47:55.762318Z","times_seen":1,"resource_available":false,"data":null}},"time_used":323,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":201,"receive":122,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:45.611Z","timestamp":1704534705611,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 20 Nov 2023 08:08:49 GMT","end":"Mon, 12 Feb 2024 08:08:48 GMT"},"fingerprint":{"sha1":"5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1","sha256":"80:CC:7B:86:3B:74:87:87:51:57:4E:D5:46:B4:9E:75:8C:D9:BA:D5:3D:29:B0:19:02:4F:62:61:AA:42:DF:C9"}}},"request":{"raw":"GET /s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: http://196.192.79.95:8717\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 128616\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 01 Jan 2024 22:28:25 GMT\r\nexpires: Tue, 31 Dec 2024 22:28:25 GMT\r\ncache-control: public, max-age=31536000\r\nage: 386600\r\nlast-modified: Tue, 07 Mar 2023 19:52:07 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":128616,"size_decoded":128616,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 128616, version 1.0","md5":"a4160421d2605545f69a4cd6cd642902","sha1":"aaae93b146d97737fabe87a6bc741113e6899ad3","sha256":"4a4dbc62fa335e411b94a532be091c58c0c0c4fa731339f11722577d3cf6443b","sha512":"d2ba5c00c3b6c1fc58519768b0dcd23951e74c00fdd424ab4565e7c2dc9c6b8e8077dc75015d9158bfd12f4573a7feed6bc3fb16eec96785c356511c9551416f","ssdeep":"3072:g9Q1hzkZsrnBLBDz44c4vHx8K+QpXKL4NfsuNhi:g+34iB544c+HWlT4N0uLi","tlshash":"95c31255b28d16451bf7c831e158675e36e32d52d03fbe8c44efca2496e1f9b2b29060","first_seen":"2023-04-16T16:36:03Z","last_seen":"2026-04-04T14:32:54.732178Z","times_seen":7378,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":8,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:45.616Z","timestamp":1704534705616,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 20 Nov 2023 08:08:49 GMT","end":"Mon, 12 Feb 2024 08:08:48 GMT"},"fingerprint":{"sha1":"5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1","sha256":"80:CC:7B:86:3B:74:87:87:51:57:4E:D5:46:B4:9E:75:8C:D9:BA:D5:3D:29:B0:19:02:4F:62:61:AA:42:DF:C9"}}},"request":{"raw":"GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: http://196.192.79.95:8717\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 11072\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Sat, 30 Dec 2023 17:18:28 GMT\r\nexpires: Sun, 29 Dec 2024 17:18:28 GMT\r\ncache-control: public, max-age=31536000\r\nage: 577997\r\nlast-modified: Wed, 11 May 2022 19:24:53 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":11072,"size_decoded":11072,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 11072, version 1.0","md5":"e7df3d0942815909add8f9d0c40d00d9","sha1":"cf5032eea3399a58870e8a05e629b006a8c7c3c7","sha256":"bce2f309470952b7affa62ff4d91b454334c68cefa541429b502904d20696875","sha512":"3632a44ee28aec0cf67ef7d3780a18db1aa84837817a3ea69a5f892d656a94b9faefc0314e2c38599410802f875df73581558ee9511ced7f717feda29336cfa0","ssdeep":"192:X+O5i60QYQyX4xOc50jR0ujO1W4qEaeFw1CsfCIRsiFDK5mvuGDP3dJGkWNZuQST:uLyYQ5Oc50+91W45FwRBseDT3fGklt1","tlshash":"6432be0ed131bba7c9fe1c3bae1307b072641e7a11badd6ab200eed5945f5a21c01db5","first_seen":"2023-04-06T07:37:44Z","last_seen":"2026-04-04T19:55:35.43705Z","times_seen":10218,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4AMP6lQ.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:45.620Z","timestamp":1704534705620,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 20 Nov 2023 08:08:49 GMT","end":"Mon, 12 Feb 2024 08:08:48 GMT"},"fingerprint":{"sha1":"5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1","sha256":"80:CC:7B:86:3B:74:87:87:51:57:4E:D5:46:B4:9E:75:8C:D9:BA:D5:3D:29:B0:19:02:4F:62:61:AA:42:DF:C9"}}},"request":{"raw":"GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4AMP6lQ.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: http://196.192.79.95:8717\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 11160\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 03 Jan 2024 21:36:53 GMT\r\nexpires: Thu, 02 Jan 2025 21:36:53 GMT\r\ncache-control: public, max-age=31536000\r\nage: 216892\r\nlast-modified: Wed, 11 May 2022 19:24:59 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":11160,"size_decoded":11160,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 11160, version 1.0","md5":"0772a436bbaaaf4381e9d87bab168217","sha1":"1ed288702dcc1e94f9cb91348ac7b6fb7448a87b","sha256":"8d3251f4935896ec37ada153d20d0109828ad08523127f136415355b3fca2dcf","sha512":"86e2e5c2b20627b0ac859169a70f9df4472b6402a134ae0f823d7eb42fa9187b18d43d34cc5459a86ae75ca7cc66612cb02a745ccf2e8347d0a800a89159b4d5","ssdeep":"192:1Ud8zVKylVcuj4PsWqmK2mhHHsNwSoeO5UvkGXHUHgkOemEqMVzpuD2PkH1bioY:G254C2mBMNwHeOWvTHzkVzQD2sVbJY","tlshash":"ee32b0464699f0acfa898b9f0392a34d709229ef4073e5d4ce589797e708740d93dbd8","first_seen":"2023-04-09T20:11:03Z","last_seen":"2026-04-04T20:02:38.51949Z","times_seen":4471,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/assets/images/emblem.png","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:45.462Z","timestamp":1704534705462,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /assets/images/emblem.png HTTP/1.1\r\nHost: 196.192.79.95:8717\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/login\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.10\r\nDate: Sat, 06 Jan 2024 09:51:45 GMT\r\nContent-Type: image/png\r\nContent-Length: 239454\r\nLast-Modified: Fri, 05 Jan 2024 14:36:59 GMT\r\nConnection: keep-alive\r\nETag: \"6598140b-3a75e\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":239454,"size_decoded":239454,"mime_type":"image/png","magic":"PNG image data, 841 x 819, 8-bit colormap, non-interlaced","md5":"753f831a93fadb0859bb7170a0bb2022","sha1":"1167cc40ea56fa5bb667cf144e6eb94d7eb36b2a","sha256":"86f38900e372e5f4ed9830dbb524864a0dd78037124a7215c232fa5794e9e1c4","sha512":"4bce84459d50b82df6f5d94ea5b5a22e6b67a255bac1c4223d46ac3472b411730ebfe19f1c1ac65eb15e3618b10f245ef7342fea6f284f1bce569b0c431532f0","ssdeep":"6144:wklQqQnWTdBdsna7oIda2YRGPVTpTfzvNt88e:TQYBWa82Y8VlfzvNC","tlshash":"8734226efd269342f9ee670b7ab0e4624c2b44cf1a9a44b5131b16c6c80f6ff4dc2456","first_seen":"2024-08-20T13:47:55.764803Z","last_seen":"2024-08-20T13:47:55.764803Z","times_seen":1,"resource_available":false,"data":null}},"time_used":224,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":201,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/assets/images/ega.png","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:45.468Z","timestamp":1704534705468,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /assets/images/ega.png HTTP/1.1\r\nHost: 196.192.79.95:8717\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/login\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.10\r\nDate: Sat, 06 Jan 2024 09:51:45 GMT\r\nContent-Type: image/png\r\nContent-Length: 49929\r\nLast-Modified: Fri, 05 Jan 2024 14:36:59 GMT\r\nConnection: keep-alive\r\nETag: \"6598140b-c309\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":49929,"size_decoded":49929,"mime_type":"image/png","magic":"PNG image data, 621 x 330, 8-bit/color RGBA, non-interlaced","md5":"10c756c6befd006209d316470538e4ce","sha1":"7476fb8122fc403e901c7a16ec2400029df61e35","sha256":"85eb448ad52d899f0b814f09a85b7916fdc9cb9bfc42e190f51c6c2dfcd11d9a","sha512":"450929d847824583fd0c553337e24f93a9a5aa62311b758a9758f275dcaae7e687dacc8693dd2aaf23e851d425e0cf6e6e44700b26edb7c30b7dbf2a296710af","ssdeep":"768:2rCbYBBcwStj0UFuJ+5sw6uaNQnT3eCc9yOT7PebzhYVibz0jmL9U2pTXIQAoWE:2ebYB4to+5fLa8Tby7Pebzsi/0jKUUAM","tlshash":"e123f116625bbd42dca32373e279481bce74c68c87f2cb41cc0251bcb6ee58a84c9693","first_seen":"2024-01-06T10:52:20Z","last_seen":"2025-09-27T00:10:13.585631Z","times_seen":3,"resource_available":false,"data":null}},"time_used":403,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":220,"receive":183,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"196.192.79.95:8717/assets/images/arm.png","fqdn":"196.192.79.95:8717","domain":"196.192.79.95","tld":"95:8717"},"ip":{"addr":"196.192.79.95","port":8717,"asn":327795,"as":"Tanzania-e-Government-Agency","country":"Tanzania","country_code":"TZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://196.192.79.95:8717/login","date":"2024-01-06T09:51:45.470Z","timestamp":1704534705470,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /assets/images/arm.png HTTP/1.1\r\nHost: 196.192.79.95:8717\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://196.192.79.95:8717/login\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.19.10\r\nDate: Sat, 06 Jan 2024 09:51:45 GMT\r\nContent-Type: image/png\r\nContent-Length: 239454\r\nLast-Modified: Fri, 05 Jan 2024 14:36:59 GMT\r\nConnection: keep-alive\r\nETag: \"6598140b-3a75e\"\r\nAccess-Control-Allow-Origin: *\r\nAccess-Control-Allow-Methods: *\r\nAccept-Ranges: bytes\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":239454,"size_decoded":239454,"mime_type":"image/png","magic":"PNG image data, 841 x 819, 8-bit colormap, non-interlaced","md5":"753f831a93fadb0859bb7170a0bb2022","sha1":"1167cc40ea56fa5bb667cf144e6eb94d7eb36b2a","sha256":"86f38900e372e5f4ed9830dbb524864a0dd78037124a7215c232fa5794e9e1c4","sha512":"4bce84459d50b82df6f5d94ea5b5a22e6b67a255bac1c4223d46ac3472b411730ebfe19f1c1ac65eb15e3618b10f245ef7342fea6f284f1bce569b0c431532f0","ssdeep":"6144:wklQqQnWTdBdsna7oIda2YRGPVTpTfzvNt88e:TQYBWa82Y8VlfzvNC","tlshash":"8734226efd269342f9ee670b7ab0e4624c2b44cf1a9a44b5131b16c6c80f6ff4dc2456","first_seen":"2024-08-20T13:47:55.764803Z","last_seen":"2024-08-20T13:47:55.764803Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1004,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":220,"receive":784,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-01-06","alert":"Sinkholed","trigger":"196.192.79.95","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}