{"report_id":"87e026e8-ad5d-4149-94e0-0a263c9e7507","version":6,"status":"done","tags":[],"date":"2023-11-13T00:04:21Z","url":{"schema":"http","addr":"track.rendan-compto.com/cbf7eb93-c0ee-428f-9628-010fc6b1e80d","fqdn":"track.rendan-compto.com","domain":"rendan-compto.com","tld":"com"},"ip":{"addr":"18.195.195.71","port":0,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"title":"Competição iPhone X"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T14:12:01Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"ie.kis.scr.kaspersky-labs.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"1999-09-13","domain_rank":486866,"first_seen":"2017-01-30 05:56:03","last_seen":"2023-11-04 21:04:50","alert_count":0,"request_count":1,"received_data":0,"sent_data":1090,"comment":"","tags":null,"fingerprints":null},{"fqdn":"shanaurg.net","ip":{"addr":"139.45.197.250","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"domain_registered":"2020-12-19","domain_rank":634243,"first_seen":"2021-01-02 01:19:23","last_seen":"2023-11-02 14:07:57","alert_count":0,"request_count":1,"received_data":27312,"sent_data":471,"comment":"","tags":null,"fingerprints":null},{"fqdn":"track.rendan-compto.com","ip":{"addr":"18.195.195.71","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"domain_registered":"2020-05-14","domain_rank":894514,"first_seen":"2020-05-14 17:49:33","last_seen":"2023-11-12 05:14:43","alert_count":0,"request_count":1,"received_data":1572,"sent_data":516,"comment":"","tags":null,"fingerprints":null},{"fqdn":"96.winprizes696.monster","ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"domain_registered":"2023-01-26","domain_rank":0,"first_seen":"2023-03-05 09:11:45","last_seen":"2023-10-28 17:20:35","alert_count":0,"request_count":12,"received_data":375581,"sent_data":11540,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2023-11-13T00:04:03Z","timestamp":1699833843,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":55680,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO DNS Query for Suspicious .icu Domain","source":"{\"timestamp\":\"2023-11-13T00:04:03.768848+0000\",\"flow_id\":1591284979710800,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.233\",\"src_port\":55680,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2026888,\"rev\":4,\"signature\":\"ET INFO DNS Query for Suspicious .icu Domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2019_02_06\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_09_16\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":59613,\"rrname\":\"weboonard-tragered.icu\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":93,\"bytes_toclient\":0,\"start\":\"2023-11-13T00:04:03.768848+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Scam / Brand infringement","verdict":"","severity":"2","comment":"","tags":[],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/mobile-detect.min.js","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"c11e13de6e306b4d983d49054ed1fbca","sha1":"6f0f99f4ed38803dc8edc852c223093ecce65c98","sha256":"68863e14275c192461e1780c12f9c630ae15adf58784409d4b158c09bfecf314","sha512":"73540138583d87146247209977b819ad1922d67c58a70ccb9b49b1cf9c0c8b9c174c5cafdfd2f881bb4395abda24110f7ef90cdc5b7189759805503f571fa009","ssdeep":"768:JzfO0UVJbC5AH4aFg4LWZgFg22929GxVvw7I15FxW2NEaaXH8nhGQi46LoTdbb:JzfO0UVtaAHpq4LWZgFg2292a4krW2Nl","tlshash":"1bf209d26f31ee052e2f8525f05f2183baf7d223a7ad4473e019498a6f4590350dbea8","size":36571,"data":"","first_seen":"2023-03-07T01:19:28Z","last_seen":"2024-09-19T22:45:23.008738Z","times_seen":29,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/detect_device.js","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"4eb7c990d4f55bf4119101fe6edce063","sha1":"e161eff3b492bc774b1ce9ca691069bd0ba43975","sha256":"527175e3a0972998abf654b4a9e0aea4bc8bbf62aadd61042ad1e3cc89505da3","sha512":"e9eced84dd25622c4ccb2bba39792c20dc7d6028e5d4278b4bdfd4679441f05efe471ed2af04fb2b7c18ca280879251539ed1d269ecde85728aa96ca50f9d8bb","ssdeep":"","tlshash":"d611083c8379f02b8878173510a5297f15b3f91295050678afda7755f48dd1ac334cb1","size":777,"data":"","first_seen":"2023-03-07T01:19:28Z","last_seen":"2024-09-19T22:45:23.009578Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/countries.js","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"a8fd4d926fa4a5f16ea2dd1e65deb7a6","sha1":"8c055c5695071d0547ba284710b206aa16a9b3d9","sha256":"a90a0feff0b27f7f8af357f7f3e35d3c7bc49b2c36067bb1ed9e3a64e2bb29e3","sha512":"d0a3225784b5a3c6ed088827c65f1ff5370ac0acf746817b1f06173781b9c2ff137ba5c486980640cb5a85b1054521cb16ac9dd225ea4554714513a4f31e5efb","ssdeep":"192:e+Nsj4TiB0t10k+GzVEMy6YWE2T+stcnE4HeatBTtSeROJAvHs0vRYGeGQMCmeOQ:e+Nsj4TiB0t10k+GzVEMy6YWE2T+stcq","tlshash":"b922c5dbd8b618ef8671d3767128ff55a4d04ba302c1297b38fd42a07f321202634daa","size":10727,"data":"","first_seen":"2023-03-07T01:19:28Z","last_seen":"2024-09-19T22:45:23.005237Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-03T05:30:43.877457Z","times_seen":14563253,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-03T05:30:43.877457Z","times_seen":14563253,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-03T05:30:43.877457Z","times_seen":14563253,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/main.js","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"bea6d34611435f8a87b0774ecd6efc02","sha1":"d979133b5b02f4d5ac3341552ea7202f77996191","sha256":"99d25eda0ae02ebd0cc72d58f7fd20bfa7156418ceb848e0cfd5e75bfb240e90","sha512":"e0c50c021dd61d4241f599dd9e1f2d592a020551ad69b71303ef2958c73a07cd5b66bcb832a7522cae9bcac0bd21be172cb0a71c873910940c1e5e4f2936ffec","ssdeep":"3072:OY7BWwoYawOC6vmY7SGV6jGj7E62fiRAFhLZq52nhw+uRk5zwZMC:OYlWwJawOjvmY7SGV6jGj7E62fiRAFh6","tlshash":"33a3c78dba8c601b42b7733c92bb5b0dfd3ed123212554e5f8acc5689f709988365ed8","size":98620,"data":"","first_seen":"2023-03-07T01:19:28Z","last_seen":"2024-09-19T22:45:23.002916Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/jquery.min.js","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":false,"md5":"5b5a269bd363e0886c17d855c2aab241","sha1":"042dd055cd289215835a58507c9531f808e1648a","sha256":"1cf30e59d21d4ae560af7143f5913efcc8222bcaa4fcc7508eb802b5faa9e94e","sha512":"977faebf1f40aec38e5a501c973a740a2361aa5d5828a3b7c26c0a6032da879976247b1d40ed3aa0840fe15353720bc95f4a3951878a304728f1dbd772b35bca","ssdeep":"1536:sNhEyjjTikEJO4edXXe9J578go6MWXqcVhkLyB4Lw13sh2bzrlk+iuH7U3gBORD2:qxcq0hkLZwpsYbbzORDU8CuQ","tlshash":"e883d5d9b2c670529b7730b850bf450bb17a98dab44c8d60f068c5d57eb8a8e507bf2c","size":86713,"data":"","first_seen":"2023-03-07T01:19:28Z","last_seen":"2026-05-03T04:40:21.738979Z","times_seen":7819,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","size":0,"data":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-03T05:30:43.877457Z","times_seen":14563253,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"introduction_type":"scriptElement","is_inline":true,"md5":"fe0dc8d4915af0701a005086d0696180","sha1":"2e65cc10554fde204edbde4d3b1e4fedff82cfa7","sha256":"909b1dec809484d438fc8a24deba298ffbed61663709c5f0a5302746a8ac41be","sha512":"ad4e29f7d9b036f9a78d278eec4318c3a6efd6d540af8d5788a59506644e1fe9595e9e2011995fbe01827a2f753a2d15bcf4b53efcde14ca086be53820e7f13c","ssdeep":"","tlshash":"06900404471517515540007034ddc1f13cfdc051fc05174055d7cc000055f3c5145704","size":40,"data":"","first_seen":"2023-03-07T01:03:01Z","last_seen":"2024-12-22T16:53:47.402078Z","times_seen":2376,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"track.rendan-compto.com/cbf7eb93-c0ee-428f-9628-010fc6b1e80d","fqdn":"track.rendan-compto.com","domain":"rendan-compto.com","tld":"com"},"ip":{"addr":"18.195.195.71","port":443,"asn":16509,"as":"AMAZON-02","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-11-13T00:04:03.782Z","timestamp":1699833843782,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"track.rendan-compto.com","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 17 Oct 2023 05:48:58 GMT","end":"Mon, 15 Jan 2024 05:48:57 GMT"},"fingerprint":{"sha1":"85:66:23:2D:5C:EF:99:4A:D4:66:2D:4C:B6:89:75:B4:A2:A0:86:C1","sha256":"61:4F:85:42:F1:84:80:62:F1:BB:7F:3A:98:E5:5A:4C:44:B4:55:B3:7E:E0:EA:7E:86:B7:CB:2C:E0:CC:C8:1E"}}},"request":{"raw":"GET /cbf7eb93-c0ee-428f-9628-010fc6b1e80d HTTP/1.1\r\nHost: track.rendan-compto.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:03 GMT\r\ncontent-length: 0\r\ncache-control: no-store, no-cache, pre-check=0, post-check=0\r\nexpires: Thu, 01 Jan 1970 00:00:00 GMT\r\nlocation: https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b\r\npragma: no-cache\r\nset-cookie: cbf7eb93-c0ee-428f-9628-010fc6b1e80d-v4=F1bgTIhqW1PdyG_t2yGxXY5bqAZKaTlls-bhhYd95js; Max-Age=86400; Expires=Tue, 14-Nov-2023 00:04:03 GMT; Domain=track.rendan-compto.com; Path=/; Secure; HttpOnly;SameSite=None\ncep-v4=HYdFSeq6YUkmd5_dHksnKxId0vVIHQHoclQjGNUyNMU1XuJXCiRkqu135GBrf8tHCYWc8curEQJoDkWkp6PHJI7DuVE1sm1Rx_tTU2YheblsR8KSrPU8R2EPZK8gmB2rXAsuoURTSPJkoWSWwQGcFD1x095B9hWtmdAf1vMuuY7H9p2TV0GllIW5Bz67NHWVjqSj6bfkRtYFqKhM9M3IDF3Za7Fk9DSu9kDWrVu-6TE3WnlqXrnqcBXNBDi-93FhhgrOJGwGr6kQ2QaHiBOc_28ZiVbccOHdOcgF-CTMGfkiYo9i8ltiNO7qVmPNcDAXzA1Bo5d4G4oU5vGGc1hIh7erZtoUBRRUCXji6-7M_hX7p3lvOvRcD-NGYua1G75DJdW9f0NezjhC2tdulMdkgOJ5Fiu_2KdaDoqSTMbPM1U; Max-Age=86400; Expires=Tue, 14-Nov-2023 00:04:03 GMT; Domain=track.rendan-compto.com; Path=/; Secure; HttpOnly;SameSite=None\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-03T05:30:43.877457Z","times_seen":14563253,"resource_available":true,"data":null}},"time_used":146,"timings":{"blocked":59,"dns":0,"connect":25,"send":0,"wait":28,"receive":1,"ssl":30},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/checkmark.png","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:05.029Z","timestamp":1699833845029,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"96.winprizes696.monster","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 06:53:07 GMT","end":"Mon, 22 Jan 2024 06:53:06 GMT"},"fingerprint":{"sha1":"98:6E:61:86:41:FE:37:7D:CE:46:77:EE:7D:6F:1E:63:8F:C1:30:2B","sha256":"E9:4A:6A:9D:2D:D1:D2:C0:00:D9:49:E4:01:49:74:8B:0F:EC:49:40:BB:A5:18:58:F4:D6:9E:9D:46:59:B4:08"}}},"request":{"raw":"GET /br3icu/checkmark.png HTTP/1.1\r\nHost: 96.winprizes696.monster\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:05 GMT\r\ncontent-type: image/png\r\ncontent-length: 1383\r\nlast-modified: Sun, 05 Mar 2023 04:44:23 GMT\r\netag: \"567-5f61fd5203591\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1383,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit colormap, non-interlaced\\012- data","md5":"c5c7963ac4910cc213df781683ca2b23","sha1":"4ac7e6fd56d69d7587fd3406fded70fb5237e494","sha256":"885f933eb3e99af07249f0a9b09e87d06a88d75ce5f3c3bae6d22057ad971663","sha512":"3a28b5b9ab5f5942d420b762f24f1c694635b8b0531f218336503bb1ae0d90b841b253d3f5941862247db3e3990305bf93b675168191a0925acd3204019e2e53","ssdeep":"","tlshash":"","first_seen":"2023-05-02T09:48:17Z","last_seen":"2024-09-19T22:45:23.002472Z","times_seen":16,"resource_available":false,"data":null}},"time_used":644,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":644,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/brflag.png","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:05.026Z","timestamp":1699833845026,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"96.winprizes696.monster","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 06:53:07 GMT","end":"Mon, 22 Jan 2024 06:53:06 GMT"},"fingerprint":{"sha1":"98:6E:61:86:41:FE:37:7D:CE:46:77:EE:7D:6F:1E:63:8F:C1:30:2B","sha256":"E9:4A:6A:9D:2D:D1:D2:C0:00:D9:49:E4:01:49:74:8B:0F:EC:49:40:BB:A5:18:58:F4:D6:9E:9D:46:59:B4:08"}}},"request":{"raw":"GET /br3icu/brflag.png HTTP/1.1\r\nHost: 96.winprizes696.monster\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:05 GMT\r\ncontent-type: image/png\r\ncontent-length: 1560\r\nlast-modified: Sun, 05 Mar 2023 04:44:21 GMT\r\netag: \"618-5f61fd5071012\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1560,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 48 x 48, 8-bit colormap, non-interlaced\\012- data","md5":"3f09355b3e373835b54ff04bf9f08d42","sha1":"c0c211336633fda9476027ee45d4ad43fd545704","sha256":"d6d664e54e7656b16e5970c451f1da24ab0eb39cde2b2e0f60ae36aaec6d3991","sha512":"ae16dd696084620a075bb2ec5ed5d371fd976f6c78b2b51278911ee03b76f698b2cefc3d0b26a6a4265e74855fd843cb94882c333bac2d4e53c7ca2d6aa6ba9b","ssdeep":"","tlshash":"","first_seen":"2023-05-02T09:48:17Z","last_seen":"2024-09-19T22:45:23.001807Z","times_seen":16,"resource_available":false,"data":null}},"time_used":647,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":647,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/loading.gif","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:05.027Z","timestamp":1699833845027,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"96.winprizes696.monster","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 06:53:07 GMT","end":"Mon, 22 Jan 2024 06:53:06 GMT"},"fingerprint":{"sha1":"98:6E:61:86:41:FE:37:7D:CE:46:77:EE:7D:6F:1E:63:8F:C1:30:2B","sha256":"E9:4A:6A:9D:2D:D1:D2:C0:00:D9:49:E4:01:49:74:8B:0F:EC:49:40:BB:A5:18:58:F4:D6:9E:9D:46:59:B4:08"}}},"request":{"raw":"GET /br3icu/loading.gif HTTP/1.1\r\nHost: 96.winprizes696.monster\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:05 GMT\r\ncontent-type: image/gif\r\ncontent-length: 5397\r\nlast-modified: Sun, 05 Mar 2023 04:44:24 GMT\r\netag: \"1515-5f61fd52a3810\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":5397,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 50 x 50\\012- data","md5":"f60928ffecf24d58778208a0f57740e6","sha1":"292e0fa1ce4891036c51e28b22afbc80dba1be6f","sha256":"67bdb1ae29193a59a00ab429adecf6639708ad554ecac21eb0cf5837c271ade5","sha512":"af98b9260ba087b3be7b093ba4194604b891d2454508247c07258bb83731f435fe51c669e1e0dcfc6f2078360e9471b07bdbb9b2e94f6c678c6147d0c55c3900","ssdeep":"","tlshash":"","first_seen":"2023-05-02T09:48:17Z","last_seen":"2024-09-19T22:45:23.001354Z","times_seen":16,"resource_available":false,"data":null}},"time_used":660,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":660,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"ie.kis.scr.kaspersky-labs.com/1B74BD89-2A22-4B93-B451-1C9E1052A0EC/init?url=https%3A%2F%2F96.winprizes696.monster%2Fbr3icu%2Findex.php%3Fcity%3DOslo%26model%3DDesktop%26brand%3DDesktop%26cep%3De3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM%26lptoken%3D169b993d83a856c9431b\u0026nocache=1298c","fqdn":"ie.kis.scr.kaspersky-labs.com","domain":"kaspersky-labs.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:05.479Z","timestamp":1699833845479,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /1B74BD89-2A22-4B93-B451-1C9E1052A0EC/init?url=https%3A%2F%2F96.winprizes696.monster%2Fbr3icu%2Findex.php%3Fcity%3DOslo%26model%3DDesktop%26brand%3DDesktop%26cep%3De3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM%26lptoken%3D169b993d83a856c9431b\u0026nocache=1298c HTTP/1.1\r\nHost: ie.kis.scr.kaspersky-labs.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://96.winprizes696.monster\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-03T05:30:43.877457Z","times_seen":14563253,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/bootstrap.min.css","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:05.003Z","timestamp":1699833845003,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"96.winprizes696.monster","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 06:53:07 GMT","end":"Mon, 22 Jan 2024 06:53:06 GMT"},"fingerprint":{"sha1":"98:6E:61:86:41:FE:37:7D:CE:46:77:EE:7D:6F:1E:63:8F:C1:30:2B","sha256":"E9:4A:6A:9D:2D:D1:D2:C0:00:D9:49:E4:01:49:74:8B:0F:EC:49:40:BB:A5:18:58:F4:D6:9E:9D:46:59:B4:08"}}},"request":{"raw":"GET /br3icu/bootstrap.min.css HTTP/1.1\r\nHost: 96.winprizes696.monster\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:05 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nlast-modified: Sun, 05 Mar 2023 04:44:21 GMT\r\netag: W/\"1da55-5f61fd4fd6b53\"\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":121429,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65367), with CRLF line terminators","md5":"835f8986c8cd8f53205e4bcc2ef5a7b3","sha1":"70c1c69150b935bc041da615444b89ee4b74d706","sha256":"4e787764ab7abe57a9375d3243a755446740055b4c593ff1e73ed12eba7cf980","sha512":"f394df02e5ab1a617dfeddd4b070c0e6c0014ff4fbf1b7797741f4fcab91ad8fc6cd00988de3e11fbafe04a757b3018841c7a1d121d98da2d85a39f46477cb9b","ssdeep":"768:RytGxw/jc/QWlJxtQ8IuiHlqLmzI4X8OAduFKbv2ctg2Bd8JP7ecQVvH1Fx:Rw/o1BIuiHlqLmN8lDbNmPbU","tlshash":"2cc3c7a0f21031ea7333c55a75d0fd872219a153e66a4eb7f22f25d88f845ca1673f1a","first_seen":"2023-04-07T00:56:15Z","last_seen":"2024-09-19T22:45:23.004566Z","times_seen":26,"resource_available":false,"data":null}},"time_used":244,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":244,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/jquery.min.js","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:05.021Z","timestamp":1699833845021,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"96.winprizes696.monster","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 06:53:07 GMT","end":"Mon, 22 Jan 2024 06:53:06 GMT"},"fingerprint":{"sha1":"98:6E:61:86:41:FE:37:7D:CE:46:77:EE:7D:6F:1E:63:8F:C1:30:2B","sha256":"E9:4A:6A:9D:2D:D1:D2:C0:00:D9:49:E4:01:49:74:8B:0F:EC:49:40:BB:A5:18:58:F4:D6:9E:9D:46:59:B4:08"}}},"request":{"raw":"GET /br3icu/jquery.min.js HTTP/1.1\r\nHost: 96.winprizes696.monster\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:05 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Sun, 05 Mar 2023 04:44:24 GMT\r\netag: W/\"152b9-5f61fd5293e10\"\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":86713,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (32030), with CRLF line terminators","md5":"5b5a269bd363e0886c17d855c2aab241","sha1":"042dd055cd289215835a58507c9531f808e1648a","sha256":"1cf30e59d21d4ae560af7143f5913efcc8222bcaa4fcc7508eb802b5faa9e94e","sha512":"977faebf1f40aec38e5a501c973a740a2361aa5d5828a3b7c26c0a6032da879976247b1d40ed3aa0840fe15353720bc95f4a3951878a304728f1dbd772b35bca","ssdeep":"1536:sNhEyjjTikEJO4edXXe9J578go6MWXqcVhkLyB4Lw13sh2bzrlk+iuH7U3gBORD2:qxcq0hkLZwpsYbbzORDU8CuQ","tlshash":"e883d5d9b2c670529b7730b850bf450bb17a98dab44c8d60f068c5d57eb8a8e507bf2c","first_seen":"2023-03-07T01:19:28Z","last_seen":"2026-05-03T04:40:21.738979Z","times_seen":7819,"resource_available":true,"data":null}},"time_used":544,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":544,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/countries.js","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:05.025Z","timestamp":1699833845025,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"96.winprizes696.monster","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 06:53:07 GMT","end":"Mon, 22 Jan 2024 06:53:06 GMT"},"fingerprint":{"sha1":"98:6E:61:86:41:FE:37:7D:CE:46:77:EE:7D:6F:1E:63:8F:C1:30:2B","sha256":"E9:4A:6A:9D:2D:D1:D2:C0:00:D9:49:E4:01:49:74:8B:0F:EC:49:40:BB:A5:18:58:F4:D6:9E:9D:46:59:B4:08"}}},"request":{"raw":"GET /br3icu/countries.js HTTP/1.1\r\nHost: 96.winprizes696.monster\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:05 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Sun, 05 Mar 2023 04:44:23 GMT\r\netag: W/\"29e7-5f61fd521db71\"\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":10727,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"a8fd4d926fa4a5f16ea2dd1e65deb7a6","sha1":"8c055c5695071d0547ba284710b206aa16a9b3d9","sha256":"a90a0feff0b27f7f8af357f7f3e35d3c7bc49b2c36067bb1ed9e3a64e2bb29e3","sha512":"d0a3225784b5a3c6ed088827c65f1ff5370ac0acf746817b1f06173781b9c2ff137ba5c486980640cb5a85b1054521cb16ac9dd225ea4554714513a4f31e5efb","ssdeep":"192:e+Nsj4TiB0t10k+GzVEMy6YWE2T+stcnE4HeatBTtSeROJAvHs0vRYGeGQMCmeOQ:e+Nsj4TiB0t10k+GzVEMy6YWE2T+stcq","tlshash":"b922c5dbd8b618ef8671d3767128ff55a4d04ba302c1297b38fd42a07f321202634daa","first_seen":"2023-03-07T01:19:28Z","last_seen":"2024-09-19T22:45:23.005237Z","times_seen":28,"resource_available":true,"data":null}},"time_used":468,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":468,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/main.js","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:05.019Z","timestamp":1699833845019,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"96.winprizes696.monster","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 06:53:07 GMT","end":"Mon, 22 Jan 2024 06:53:06 GMT"},"fingerprint":{"sha1":"98:6E:61:86:41:FE:37:7D:CE:46:77:EE:7D:6F:1E:63:8F:C1:30:2B","sha256":"E9:4A:6A:9D:2D:D1:D2:C0:00:D9:49:E4:01:49:74:8B:0F:EC:49:40:BB:A5:18:58:F4:D6:9E:9D:46:59:B4:08"}}},"request":{"raw":"GET /br3icu/main.js HTTP/1.1\r\nHost: 96.winprizes696.monster\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:05 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Sun, 05 Mar 2023 04:44:24 GMT\r\netag: W/\"1813c-5f61fd52d2610\"\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":98620,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (330), with CRLF line terminators","md5":"bea6d34611435f8a87b0774ecd6efc02","sha1":"d979133b5b02f4d5ac3341552ea7202f77996191","sha256":"99d25eda0ae02ebd0cc72d58f7fd20bfa7156418ceb848e0cfd5e75bfb240e90","sha512":"e0c50c021dd61d4241f599dd9e1f2d592a020551ad69b71303ef2958c73a07cd5b66bcb832a7522cae9bcac0bd21be172cb0a71c873910940c1e5e4f2936ffec","ssdeep":"3072:OY7BWwoYawOC6vmY7SGV6jGj7E62fiRAFhLZq52nhw+uRk5zwZMC:OYlWwJawOjvmY7SGV6jGj7E62fiRAFh6","tlshash":"33a3c78dba8c601b42b7733c92bb5b0dfd3ed123212554e5f8acc5689f709988365ed8","first_seen":"2023-03-07T01:19:28Z","last_seen":"2024-09-19T22:45:23.002916Z","times_seen":28,"resource_available":true,"data":null}},"time_used":416,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":416,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/mobile-detect.min.js","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:05.023Z","timestamp":1699833845023,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"96.winprizes696.monster","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 06:53:07 GMT","end":"Mon, 22 Jan 2024 06:53:06 GMT"},"fingerprint":{"sha1":"98:6E:61:86:41:FE:37:7D:CE:46:77:EE:7D:6F:1E:63:8F:C1:30:2B","sha256":"E9:4A:6A:9D:2D:D1:D2:C0:00:D9:49:E4:01:49:74:8B:0F:EC:49:40:BB:A5:18:58:F4:D6:9E:9D:46:59:B4:08"}}},"request":{"raw":"GET /br3icu/mobile-detect.min.js HTTP/1.1\r\nHost: 96.winprizes696.monster\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:05 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Sun, 05 Mar 2023 04:44:24 GMT\r\netag: W/\"8edb-5f61fd52d6490\"\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":36571,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (32053), with CRLF line terminators","md5":"c11e13de6e306b4d983d49054ed1fbca","sha1":"6f0f99f4ed38803dc8edc852c223093ecce65c98","sha256":"68863e14275c192461e1780c12f9c630ae15adf58784409d4b158c09bfecf314","sha512":"73540138583d87146247209977b819ad1922d67c58a70ccb9b49b1cf9c0c8b9c174c5cafdfd2f881bb4395abda24110f7ef90cdc5b7189759805503f571fa009","ssdeep":"768:JzfO0UVJbC5AH4aFg4LWZgFg22929GxVvw7I15FxW2NEaaXH8nhGQi46LoTdbb:JzfO0UVtaAHpq4LWZgFg2292a4krW2Nl","tlshash":"1bf209d26f31ee052e2f8525f05f2183baf7d223a7ad4473e019498a6f4590350dbea8","first_seen":"2023-03-07T01:19:28Z","last_seen":"2024-09-19T22:45:23.008738Z","times_seen":29,"resource_available":true,"data":null}},"time_used":643,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":643,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shanaurg.net/pfe/current/micro.tag.min.js?z=3899161\u0026sw=/sw-check-permissions-8f7b4.js","fqdn":"shanaurg.net","domain":"shanaurg.net","tld":"net"},"ip":{"addr":"139.45.197.250","port":443,"asn":9002,"as":"RETN Limited","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:05.662Z","timestamp":1699833845662,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"ECDSA-P521-SHA512","protocol":"TLSv1.2","cert":{"subject":{"commonName":"shanaurg.net","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Wed, 25 Oct 2023 05:05:14 GMT","end":"Tue, 23 Jan 2024 05:05:13 GMT"},"fingerprint":{"sha1":"0F:CB:52:72:5B:AD:56:50:FB:1C:BE:8A:61:0E:F7:A1:4E:71:85:C0","sha256":"9C:A0:5E:C8:D5:54:15:FF:87:BE:95:56:C0:48:EA:30:33:79:88:97:27:BF:AF:44:D1:75:0F:2F:3E:82:B4:FB"}}},"request":{"raw":"GET /pfe/current/micro.tag.min.js?z=3899161\u0026sw=/sw-check-permissions-8f7b4.js HTTP/1.1\r\nHost: shanaurg.net\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:06 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Fri, 10 Nov 2023 11:00:38 GMT\r\netag: W/\"654e0d56-697f\"\r\naccess-control-allow-credentials: true\r\ncache-control: no-cache\r\npragma: no-cache\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":27007,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (27007), with no line terminators","md5":"5ccd2d5882a06f293d07510ac91c92e6","sha1":"b44dc0eaa03981adb70d3313e728f9359c1d21c1","sha256":"9fc2aa21f3a7bfe66783d35fdbb48147f73e72a41f87aea848f64a8cb4518eba","sha512":"fddc1b3dbd07ff0fc03156101d5db8b8f3dd5f61c44e1a6c48ba6c50132dbfd32f9dda05f4aaab1bf2791de55a019f5f991a93282ad6cac1f89de5f5b7d8c535","ssdeep":"768:EbCTuXSpS9v04L37efBm+Zv2bN3H1CXQR0wZWbIJh1UMmvjCeZskk4Nci0:nML37efBbvkZDaOocJ","tlshash":"71c2b7b6f86db86423e12cc7543f1148657ad5a9fa6a74f0d1096ab2347200bb2f3fd4","first_seen":"2023-11-02T09:44:53Z","last_seen":"2024-08-20T21:23:50.961937Z","times_seen":8998,"resource_available":true,"data":null}},"time_used":723,"timings":{"blocked":345,"dns":71,"connect":38,"send":0,"wait":33,"receive":0,"ssl":230},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-11-13T00:04:03.906Z","timestamp":1699833843906,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"96.winprizes696.monster","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 06:53:07 GMT","end":"Mon, 22 Jan 2024 06:53:06 GMT"},"fingerprint":{"sha1":"98:6E:61:86:41:FE:37:7D:CE:46:77:EE:7D:6F:1E:63:8F:C1:30:2B","sha256":"E9:4A:6A:9D:2D:D1:D2:C0:00:D9:49:E4:01:49:74:8B:0F:EC:49:40:BB:A5:18:58:F4:D6:9E:9D:46:59:B4:08"}}},"request":{"raw":"GET /br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b HTTP/1.1\r\nHost: 96.winprizes696.monster\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:04 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7822,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document text\\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9033), with no line terminators","md5":"e012c14463987ed33141946d0b518596","sha1":"e54a47910d3865aeac7b91592117870402ef5d2d","sha256":"bcdb8204a518acd665aae80bc891ee11cd0cc75e66b55a7e35f18ec6f5555288","sha512":"e5a2aca4646afd026990785052e0c4bd04d5c732b0c0d0d5a275afba88e2991334739ea2dbda22d4bbe515ae012a6843e554df1e697d340c7b64c40a46beca61","ssdeep":"192:I+MJ3WNLW8X4pC1zspx7vL1tEvg/04BFB:DMJ3WNLW8XV1zspx7vL1tEvg/04B3","tlshash":"e712237b5c3df229110207b520e7a63a343bad0d7d6196747adcf098e38cd94c872ea4","first_seen":"2023-05-25T23:47:20Z","last_seen":"2023-11-30T13:21:57Z","times_seen":8,"resource_available":false,"data":null}},"time_used":1254,"timings":{"blocked":410,"dns":3,"connect":203,"send":0,"wait":425,"receive":0,"ssl":209},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/style.css","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:05.018Z","timestamp":1699833845018,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"96.winprizes696.monster","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 06:53:07 GMT","end":"Mon, 22 Jan 2024 06:53:06 GMT"},"fingerprint":{"sha1":"98:6E:61:86:41:FE:37:7D:CE:46:77:EE:7D:6F:1E:63:8F:C1:30:2B","sha256":"E9:4A:6A:9D:2D:D1:D2:C0:00:D9:49:E4:01:49:74:8B:0F:EC:49:40:BB:A5:18:58:F4:D6:9E:9D:46:59:B4:08"}}},"request":{"raw":"GET /br3icu/style.css HTTP/1.1\r\nHost: 96.winprizes696.monster\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:05 GMT\r\ncontent-type: text/css\r\nvary: Accept-Encoding\r\nlast-modified: Sun, 05 Mar 2023 04:44:25 GMT\r\netag: W/\"5ae-5f61fd535a1f0\"\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1454,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (1631), with no line terminators","md5":"ca6ab4b237d92b23b7d3c786dd0a75db","sha1":"98de24d6fc6d64f947f9a7ecc6158dcd0e5ae7b3","sha256":"65d7d27a585905c0035fac22663334c88b370af4a36f2ecefc76b1d015dfa9b8","sha512":"5cbfbcc7d4940195b326d045d7f2139126e25c02b0a2789c70f5bf219ffe53998307f81610d616618a2ed994a8d1d19a066fd507db8e6457ed80da1e069b656f","ssdeep":"","tlshash":"86312abaad0e341a5f43593d09564502587f7c82f1025af9bc7ab024d7e7ca4b363939","first_seen":"2023-04-07T10:12:54Z","last_seen":"2024-09-19T22:45:23.006067Z","times_seen":26,"resource_available":false,"data":null}},"time_used":284,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":284,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/favicon.ico","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:07.261Z","timestamp":1699833847261,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"96.winprizes696.monster","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 06:53:07 GMT","end":"Mon, 22 Jan 2024 06:53:06 GMT"},"fingerprint":{"sha1":"98:6E:61:86:41:FE:37:7D:CE:46:77:EE:7D:6F:1E:63:8F:C1:30:2B","sha256":"E9:4A:6A:9D:2D:D1:D2:C0:00:D9:49:E4:01:49:74:8B:0F:EC:49:40:BB:A5:18:58:F4:D6:9E:9D:46:59:B4:08"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 96.winprizes696.monster\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:07 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\nvary: Accept-Encoding\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":371,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (386), with no line terminators","md5":"ee38251b54e4a0a06ddf5b91e8338c17","sha1":"7ac6a8c5c99acc67beb6ba6a44b8f004736b7c6f","sha256":"f177fb69c123c5d7ab569cf61efe23fcdf9c4149018640699fd87821ea751b74","sha512":"588868a05fb290f19d9f554289be97370e79364efaf978074634c5e4a2db3290b06ad87d61b75634b7f41849abb6d1909ad7b0fbec642f3025613af2d4da3509","ssdeep":"","tlshash":"8ae0610fb045024ab4251cd53bc313d1258d5742626a42f539575548ea4e03d95f5bcc","first_seen":"2023-04-05T07:54:06Z","last_seen":"2025-04-03T04:25:21.903587Z","times_seen":2074,"resource_available":false,"data":null}},"time_used":205,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":205,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"96.winprizes696.monster/br3icu/detect_device.js","fqdn":"96.winprizes696.monster","domain":"winprizes696.monster","tld":"monster"},"ip":{"addr":"45.76.148.82","port":443,"asn":20473,"as":"AS-CHOOPA","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b","date":"2023-11-13T00:04:05.024Z","timestamp":1699833845024,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"96.winprizes696.monster","organization":""},"issuer":{"commonName":"R3","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Oct 2023 06:53:07 GMT","end":"Mon, 22 Jan 2024 06:53:06 GMT"},"fingerprint":{"sha1":"98:6E:61:86:41:FE:37:7D:CE:46:77:EE:7D:6F:1E:63:8F:C1:30:2B","sha256":"E9:4A:6A:9D:2D:D1:D2:C0:00:D9:49:E4:01:49:74:8B:0F:EC:49:40:BB:A5:18:58:F4:D6:9E:9D:46:59:B4:08"}}},"request":{"raw":"GET /br3icu/detect_device.js HTTP/1.1\r\nHost: 96.winprizes696.monster\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://96.winprizes696.monster/br3icu/index.php?city=Oslo\u0026model=Desktop\u0026brand=Desktop\u0026cep=e3xYUUauVYTre3MMCxYzL0u6pd6LXw4LOV1IowCOa8ENXtZKAGFtG0qj1guuPWwLUx8ZJd1M8pI0BSSDElkG7RwPAVXp1yKerTmlWH6iR4UGnUt-MD7KHTvwELGDN1sMnwYMf5pdxpM6AjDEOC88U_GwrVxZff_tifOgBZ78sSMN3MQQkAU4HhJg19VoXfbwj4krzAW0_98WpwjBu_AmSJJQtu2hzQFVxjjJbNXC4kak75E423jHk_UGJuJmGXqyUF1vPGUA622kZUMhNZ7JgtkNEcic_rLDMwCU805OVXNO4M_LW9tIAiQKXdjiGHUWNWwTzGgYBeI8UtmaN6bsdvV__Ojs9CWkpSZdhFGGluabAmDy0s-UwCDL49Nwe1R6KTT2aQaD5ZrySuKHBg6gNL3gh7JjGrlGU6GB0F1wAmM\u0026lptoken=169b993d83a856c9431b\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Mon, 13 Nov 2023 00:04:05 GMT\r\ncontent-type: application/javascript\r\nvary: Accept-Encoding\r\nlast-modified: Sun, 05 Mar 2023 04:44:23 GMT\r\netag: W/\"309-5f61fd5235271\"\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":777,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (902), with no line terminators","md5":"f5bc91d4c00933aa1ab24e15bfbf40e9","sha1":"a2b611b8a23f0e37db15a8274a022b03c0729ae7","sha256":"23c42e399983c04c508c26fb13ab4a40fd3c18ca379d87dad0765264d5090064","sha512":"63f7c503a8f987b0f25f8eba53139d12ec9ca1c3900c4b9209f129bbc56b5b2560e4c23d3729189e80212e35441a4f89238c64f8909bba47ffb36195d67ac5f8","ssdeep":"","tlshash":"fc11043c8379f02b8878173920a5297f25b3f91295050678afda7795f48de2ac334cb2","first_seen":"2023-04-07T00:56:15Z","last_seen":"2024-09-19T22:45:23.006702Z","times_seen":24,"resource_available":false,"data":null}},"time_used":454,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":454,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}