| kraken2trfqodidvlh4aa337cpzfrhdlfldhve5nf7njhpmwr7instad.com/?ref=kraken13.at&shop2go=//?ref=kraken13.at&shop2go=//?ref=kraken13.at&shop2go=/ | 188.114.97.1 | 200 OK | 20 B |
URL User Request GET HTTP/2kraken2trfqodidvlh4aa337cpzfrhdlfldhve5nf7njhpmwr7instad.com/?ref=kraken13.at&shop2go=//?ref=kraken13.at&shop2go=//?ref=kraken13.at&shop2go=/ IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectkraken2trfqodidvlh4aa337cpzfrhdlfldhve5nf7njhpmwr7instad.com Fingerprint85:D4:86:C1:62:17:9C:48:1C:06:1B:55:2D:08:E0:A9:44:9A:0D:3C ValiditySat, 20 Apr 2024 14:23:48 GMT - Fri, 19 Jul 2024 14:23:47 GMT
File typeASCII text, with no line terminators Hash9871c879add7f59b183c98b1f97b6c39 7eec6fd1dffe4bd1b541b89571f700008b375cb3 cbc5a28692d0e803a904ef38c19a6203c555c573e1ba8601d8f7fc5f39857076
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?ref=kraken13.at&shop2go=//?ref=kraken13.at&shop2go=//?ref=kraken13.at&shop2go=/ HTTP/1.1
Host: kraken2trfqodidvlh4aa337cpzfrhdlfldhve5nf7njhpmwr7instad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 03:58:10 GMT
content-type: text/plain; charset=UTF-8
set-cookie: __ddg1_=Rqi7df7D3oMLXNWxjfdf; Domain=.kraken2trfqodidvlh4aa337cpzfrhdlfldhve5nf7njhpmwr7instad.com; HttpOnly; Path=/; Expires=Sat, 26-Apr-2025 03:58:09 GMT
sdesk=a18e3810af312dfd75a0d9ad87710444; path=/
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
retry-after: 54
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p09BtK%2BukLFj243XZbSxh27Leib7KxdiwCy61LonuRv2EbF3QUwm%2FP0e8nG7a%2B5b0dowXEkAvbvs0RA9vRmGpRbHSazTY9uXc1HtcQPAG4lV%2F%2BM4h6VqSGxJM3fo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
access-control-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a3a71fbb5756c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| kraken2trfqodidvlh4aa337cpzfrhdlfldhve5nf7njhpmwr7instad.com/favicon.ico | 188.114.97.1 | 200 OK | 3.9 kB |
URL GET HTTP/3kraken2trfqodidvlh4aa337cpzfrhdlfldhve5nf7njhpmwr7instad.com/favicon.ico IP188.114.97.1:443
Requested byhttps://kraken2trfqodidvlh4aa337cpzfrhdlfldhve5nf7njhpmwr7instad.com/?ref=kraken13.at&shop2go=//?ref=kraken13.at&shop2go=//?ref=kraken13.at&shop2go=/ CertificateIssuerLet's Encrypt Subjectkraken2trfqodidvlh4aa337cpzfrhdlfldhve5nf7njhpmwr7instad.com Fingerprint85:D4:86:C1:62:17:9C:48:1C:06:1B:55:2D:08:E0:A9:44:9A:0D:3C ValiditySat, 20 Apr 2024 14:23:48 GMT - Fri, 19 Jul 2024 14:23:47 GMT
File typeMS Windows icon resource - 4 icons, 16x16 with PNG image data, 16 x 16, 8-bit colormap, non-interlaced, 32 bits/pixel, 24x24 with
- PNG image data, 24 x 24, 8-bit colormap, non-interlaced, 32 bits/pixel Hashc92b85a5b907c70211f4ec25e29a8c4a 1120538c77ad1f28a89243b4b53fe2ac16cc3bc6 3d10f7da6c603178340081668c4ac5b3ae9743ca9a262ab0fcd312fbb9f48bdd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: kraken2trfqodidvlh4aa337cpzfrhdlfldhve5nf7njhpmwr7instad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kraken2trfqodidvlh4aa337cpzfrhdlfldhve5nf7njhpmwr7instad.com/?ref=kraken13.at&shop2go=//?ref=kraken13.at&shop2go=//?ref=kraken13.at&shop2go=/
DNT: 1
Connection: keep-alive
Cookie: __ddg1_=Rqi7df7D3oMLXNWxjfdf; sdesk=a18e3810af312dfd75a0d9ad87710444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 03:58:10 GMT
content-type: image/vnd.microsoft.icon
last-modified: Sun, 31 Mar 2024 07:02:57 GMT
etag: W/"f1e-614ef7672368b"
access-control-allow-origin: *
ddg-cache-status: MISS
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PMEKZEeoD3vbHEeSE%2BtOp4VOL%2FlLRVHGq3ZnOmnpyJYQvg2ubny3atlKjo2Aqn1BpGIL2O%2Fw0xv7EnMK93S8PE2qc7QXkb0x%2FpU%2FXMOV%2FHNmWOkMoYArmC2UCOyiRF1ra%2B6%2F42ERzHkuMwm4CwsKkXEHxLIyxeAN2V02VuYBwzigzPIDlfXSrqNT4pGgyw4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a3a7245f1156a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|