| licocojambamarketplace.com/fwefwe324234234rgeffwehtrwyrhtrhtqwfqwd31443wefefwwfer3232fewwefwefwefqgrqwtherergqefwefqweqfwqf32fefwsda/uploads/lum | 172.67.181.25 | 200 OK | 614 kB |
URL User Request GET HTTP/2licocojambamarketplace.com/fwefwe324234234rgeffwehtrwyrhtrhtqwfqwd31443wefefwwfer3232fewwefwefwefqgrqwtherergqefwefqweqfwqf32fefwsda/uploads/lum IP172.67.181.25:443
CertificateIssuerGoogle Trust Services LLC Subjectlicocojambamarketplace.com FingerprintE5:62:81:67:98:74:0F:F6:2B:23:72:AE:53:8F:6C:69:01:EE:E0:AA ValiditySat, 13 Apr 2024 21:04:00 GMT - Fri, 12 Jul 2024 21:03:59 GMT
File typePE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections Size614 kB (614400 bytes) Hash2f343049b368ecf7543cba18c582f1ef 60ccd1ea9387048f7da910de65ab5a4f1f7dec26 19a18e63015f9a2dca1ccc9adea2be785f88f204faf18fb51dd7c3e0b964728f
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed | VirusTotal | malicious | |
GET /fwefwe324234234rgeffwehtrwyrhtrhtqwfqwd31443wefefwwfer3232fewwefwefwefqgrqwtherergqefwefqweqfwqf32fefwsda/uploads/lum HTTP/1.1
Host: licocojambamarketplace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 27 Apr 2024 02:32:18 GMT
content-length: 614400
last-modified: Tue, 06 Feb 2024 09:32:08 GMT
etag: "96000-65c1fc98-858198eeb08f01af;;;"
accept-ranges: bytes
vary: User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fVSHTp6S30KMEfz6fkdzc3pqH6Rtn2qy2sjC90UDt8PnMA6AopqH2Xx91t8QpBIzSQtue%2BlU1E1HMCaD2AQaQQIKlcLTO3gEZzhHJTmmM9yE1RJMSawxtUL2iM44%2BgFhlL0yaLKDkSPOPfhRUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ab66bcd82ab518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| licocojambamarketplace.com/ | 104.21.64.104 | | 167 B |
URL licocojambamarketplace.com/ IP104.21.64.104:0
CertificateIssuerGoogle Trust Services LLC Subjectlicocojambamarketplace.com FingerprintE5:62:81:67:98:74:0F:F6:2B:23:72:AE:53:8F:6C:69:01:EE:E0:AA ValiditySat, 13 Apr 2024 21:04:00 GMT - Fri, 12 Jul 2024 21:03:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: licocojambamarketplace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sat, 27 Apr 2024 02:32:21 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 27 Apr 2024 03:32:21 GMT
Location: https://licocojambamarketplace.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t%2BdjlGxrfmuD15zlteHE3LBUt%2FpsHvnlQeDdY4InOT7cWpniDP6xXoM%2FnwKJtnjdU4W4GO0FSKZ9HbpvujzyMu1nEWALfOMEOst6BhSqcyYaQPXLAQ5rX0ti7wqaMeiLTMzxrd5eQT2MU6ZfZg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87ab66cf6cb8b51d-OSL
alt-svc: h2=":443"; ma=60
|
| licocojambamarketplace.com/ | 172.67.181.25 | | 858 B |
URL licocojambamarketplace.com/ IP172.67.181.25:0
CertificateIssuerGoogle Trust Services LLC Subjectlicocojambamarketplace.com FingerprintE5:62:81:67:98:74:0F:F6:2B:23:72:AE:53:8F:6C:69:01:EE:E0:AA ValiditySat, 13 Apr 2024 21:04:00 GMT - Fri, 12 Jul 2024 21:03:59 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash39d9528a539f73768073a9d8e4587324 f46f256935e8d61208b6f67d4d76c0987f9025cd 0c9bbfe175c1dc57fff572a1395af56b7942836d4c0c0708889ce35993d76c05
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: licocojambamarketplace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Sat, 27 Apr 2024 02:32:21 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
vary: User-Agent
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h9zZwbs2N2sx7TG%2Bo4g6dZT7syPGZa3vU2tdIqQ74u2fCqjy1cxcfLJcxNupM%2BoGMaRAVnuzikd8%2BbsAdaSUmv1cZw%2F5jt05Atsy6wrMiOsKlmJKnyaJLSs8Pn2pRJBZXA3HndpDV6rj1GTT9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ab66cf9f9856bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|