{"report_id":"91dc25ca-1cd9-4d82-ac41-1657370a69b3","version":6,"status":"done","tags":[],"date":"2026-02-23T10:50:21Z","url":{"schema":"http","addr":"game4.fly360.top/","fqdn":"game4.fly360.top","domain":"fly360.top","tld":"top"},"ip":{"addr":"3.164.240.46","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"game4.fly360.top/","fqdn":"game4.fly360.top","domain":"fly360.top","tld":"top"},"title":"404 Not Found","dom":{"size":536,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"c67472d830f5bc552ee834c805f3c29f","sha1":"b574d5ad74f8480ef3e0a4f8e5e97d619b631bc3","sha256":"e2cec9e84fd34841cc6c1c4c99025494d4158d0767e8af1f0cd9c5d78daec16b","sha512":"c89d0de13d1ef750ed8ef783b19442b3102e0dd9df74286e9176585efa2fe16f5b1c02678a0f54a39b23f1bc8753f12ded65a312bde001ce983f40dd0cc641c5","ssdeep":"","tlshash":"68f0501e0916c644d84410366ca371545f9b46bdc6b913377596c4c770c62b7de9718c","dom_hash":"domhashc984539f9f475ce28c29fd36cfcaf5f8","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"game4.fly360.top/","fqdn":"game4.fly360.top","domain":"fly360.top","tld":"top"},"ip":{"addr":"3.164.240.46","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-30T10:50:21Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":0}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-23T10:49:58Z","timestamp":1771843798,"ip_dst":{"addr":"52.84.50.19","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"ip_src":{"addr":"Client IP","port":38996,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2026-02-23T10:49:58.886292+0000\",\"flow_id\":1812234352621460,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.36\",\"src_port\":38996,\"dest_ip\":\"52.84.50.19\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"game4.fly360.top\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://game4.fly360.top/\",\"length\":167},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":673,\"bytes_toclient\":802,\"start\":\"2026-02-23T10:49:58.882580+0000\"}}"}],"analyzer":null,"urlquery":null},"summary":[{"fqdn":"game4.fly360.top","ip":{"addr":"52.84.50.19","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2025-04-27","domain_rank":0,"first_seen":"2026-02-23T10:50:22.023736Z","last_seen":"2026-02-23T10:50:22.023736Z","alert_count":3,"request_count":4,"received_data":3746,"sent_data":1810,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"game4.fly360.top/","fqdn":"game4.fly360.top","domain":"fly360.top","tld":"top"},"ip":{"addr":"52.84.50.19","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-23T10:49:57.853Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fly360.top","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 20 Aug 2025 00:00:00 GMT","end":"Fri, 18 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C0:35:2C:C9:13:C5:54:3B:E0:08:65:4B:4D:64:6C:04:5D:7E:59:83","sha256":"70:AA:FF:B6:6C:97:A3:A2:E0:2F:7F:82:34:C0:B4:72:38:12:89:41:1D:01:6A:A1:2E:A5:E7:74:DB:BB:16:A2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: game4.fly360.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 538\r\ndate: Mon, 23 Feb 2026 10:49:57 GMT\r\nserver: AmazonS3\r\nx-cache: Error from cloudfront\r\nvia: 1.1 50557aa30b42f85b01a1a22ebf5ee7a0.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: xfOcd20QbifmaJ9SrDtnEbvgZeDbC7k3t5EoCsPUjSvqWoU4QIUbxQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":538,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"798843fb395e3954dadc670dad334c52","sha1":"14ecd37169d5c96f24b5543941b508dea4df7ed0","sha256":"931488c7d6c6638330d0ee7078ab2cca4ca52174d3f1886356e9e963eed35517","sha512":"012e58d0223bbb0a3ba1fe9011acd040104a425179dbeb74df1ce41d5ddb2f9ee214d6e0a7d90e647292143b016be0be533a8f4f5a9411748752b9f85487d672","ssdeep":"","tlshash":"cff0c01e0912c644d40410366ca361445fdb06bcc6f913377596c0c7b0c62b79e8718c","first_seen":"2026-02-23T10:50:23.862601Z","last_seen":"2026-02-23T10:50:23.862601Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1774,"timings":{"blocked":849,"dns":666,"connect":1,"send":0,"wait":76,"receive":0,"ssl":179},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-23T10:49:58Z","timestamp":1771843798,"ip_dst":{"addr":"52.84.50.19","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.36","port":38996,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2026-02-23T10:49:58.886292+0000\",\"flow_id\":1812234352621460,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.36\",\"src_port\":38996,\"dest_ip\":\"52.84.50.19\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"game4.fly360.top\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://game4.fly360.top/\",\"length\":167},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":673,\"bytes_toclient\":802,\"start\":\"2026-02-23T10:49:58.882580+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"game4.fly360.top/","fqdn":"game4.fly360.top","domain":"fly360.top","tld":"top"},"ip":{"addr":"52.84.50.19","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-23T10:49:58.880Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: game4.fly360.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nServer: CloudFront\r\nDate: Mon, 23 Feb 2026 10:49:58 GMT\r\nContent-Type: text/html\r\nContent-Length: 167\r\nConnection: keep-alive\r\nLocation: https://game4.fly360.top/\r\nX-Cache: Redirect from cloudfront\r\nVia: 1.1 fd72662d19f1605cb71a8fd4814daf52.cloudfront.net (CloudFront)\r\nX-Amz-Cf-Pop: OSL50-P3\r\nAlt-Svc: h3=\":443\"; ma=86400\r\nX-Amz-Cf-Id: bUNPTYBHAWZDDpxRxT35-29B6qxL0xcrwAJJDFviWLAnFRbWnAr5Ww==\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":538,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-05T08:47:05.766455Z","times_seen":13367613,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":3,"dns":7,"connect":1,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-23T10:49:58Z","timestamp":1771843798,"ip_dst":{"addr":"52.84.50.19","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.36","port":38996,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2026-02-23T10:49:58.886292+0000\",\"flow_id\":1812234352621460,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.36\",\"src_port\":38996,\"dest_ip\":\"52.84.50.19\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"game4.fly360.top\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://game4.fly360.top/\",\"length\":167},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":673,\"bytes_toclient\":802,\"start\":\"2026-02-23T10:49:58.882580+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"game4.fly360.top/","fqdn":"game4.fly360.top","domain":"fly360.top","tld":"top"},"ip":{"addr":"52.84.50.19","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-23T10:49:58.890Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fly360.top","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 20 Aug 2025 00:00:00 GMT","end":"Fri, 18 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C0:35:2C:C9:13:C5:54:3B:E0:08:65:4B:4D:64:6C:04:5D:7E:59:83","sha256":"70:AA:FF:B6:6C:97:A3:A2:E0:2F:7F:82:34:C0:B4:72:38:12:89:41:1D:01:6A:A1:2E:A5:E7:74:DB:BB:16:A2"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: game4.fly360.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 538\r\ndate: Mon, 23 Feb 2026 10:49:57 GMT\r\nserver: AmazonS3\r\nx-cache: Error from cloudfront\r\nvia: 1.1 50557aa30b42f85b01a1a22ebf5ee7a0.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: I_yTDV-wNkthhSW0wwXjmDiYAYbRrH0oub2N7yVwBeDLkfb0L7Jk_w==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":538,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"798843fb395e3954dadc670dad334c52","sha1":"14ecd37169d5c96f24b5543941b508dea4df7ed0","sha256":"931488c7d6c6638330d0ee7078ab2cca4ca52174d3f1886356e9e963eed35517","sha512":"012e58d0223bbb0a3ba1fe9011acd040104a425179dbeb74df1ce41d5ddb2f9ee214d6e0a7d90e647292143b016be0be533a8f4f5a9411748752b9f85487d672","ssdeep":"","tlshash":"cff0c01e0912c644d40410366ca361445fdb06bcc6f913377596c0c7b0c62b79e8718c","first_seen":"2026-02-23T10:50:23.862601Z","last_seen":"2026-02-23T10:50:23.862601Z","times_seen":1,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":3,"receive":0,"ssl":0},"alerts":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-02-23T10:49:58Z","timestamp":1771843798,"ip_dst":{"addr":"52.84.50.19","port":80,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"ip_src":{"addr":"172.18.0.36","port":38996,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"medium","alert":"ET INFO HTTP Request to a *.top domain","source":"{\"timestamp\":\"2026-02-23T10:49:58.886292+0000\",\"flow_id\":1812234352621460,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.36\",\"src_port\":38996,\"dest_ip\":\"52.84.50.19\",\"dest_port\":80,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.SuspExeTLDs\"]},\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2023882,\"rev\":5,\"signature\":\"ET INFO HTTP Request to a *.top domain\",\"category\":\"Potentially Bad Traffic\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2017_02_07\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_11_21\"]}},\"http\":{\"hostname\":\"game4.fly360.top\",\"url\":\"/\",\"http_user_agent\":\"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\",\"http_content_type\":\"text/html\",\"http_method\":\"GET\",\"protocol\":\"HTTP/1.1\",\"status\":301,\"redirect\":\"https://game4.fly360.top/\",\"length\":167},\"app_proto\":\"http\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":673,\"bytes_toclient\":802,\"start\":\"2026-02-23T10:49:58.882580+0000\"}}"}],"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"game4.fly360.top/favicon.ico","fqdn":"game4.fly360.top","domain":"fly360.top","tld":"top"},"ip":{"addr":"52.84.50.19","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://game4.fly360.top/","date":"2026-02-23T10:49:58.985Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"fly360.top","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 20 Aug 2025 00:00:00 GMT","end":"Fri, 18 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"C0:35:2C:C9:13:C5:54:3B:E0:08:65:4B:4D:64:6C:04:5D:7E:59:83","sha256":"70:AA:FF:B6:6C:97:A3:A2:E0:2F:7F:82:34:C0:B4:72:38:12:89:41:1D:01:6A:A1:2E:A5:E7:74:DB:BB:16:A2"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: game4.fly360.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://game4.fly360.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 559\r\nalt-svc: h3=\":443\"; ma=86400\r\ndate: Mon, 23 Feb 2026 10:49:58 GMT\r\nserver: AmazonS3\r\nx-cache: Error from cloudfront\r\nvia: 1.1 5f042aad530968241af9b660cec6b106.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nx-amz-cf-id: NkppSf2HL4RnYr84LBrOJcKYghMY0ToTFUI0_d_my95TX8M8yHcecw==\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":559,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"36a5e985b574512635e564deef7b5f2e","sha1":"e5326ead0f4262d9637078d29578825b788baa25","sha256":"4e7758c1c81a6d43e4cd173ea1e9b7957cd1dbc0d7e931850c0aeac1a3e496a3","sha512":"2cf45bec6eac448a95a4c2db6e77600903b11b6bd215197780093ffd0c9e77667f3ae60daa1047c5484f4fe3d72ac21d3eb8f9cf704beed807cdee8dba6b609f","ssdeep":"","tlshash":"a3f02b0e0a12c149e514003a6ca262405faf46b9daba0737a186849670da6fa9d5729e","first_seen":"2026-02-23T10:50:23.865244Z","last_seen":"2026-02-23T10:50:23.865244Z","times_seen":1,"resource_available":false,"data":null}},"time_used":74,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":74,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}