{"report_id":"91e791a5-2490-455c-af35-4f87ab4e8ef8","version":6,"status":"done","tags":["botpanel","malware"],"date":"2026-03-26T15:06:22Z","url":{"schema":"http","addr":"www.revolutionsoccer.net/news/new-england-revolution-ii-sign-defender-jared-smith\u0026ct=ga\u0026cd=CAEYBSoUMTI0MjU4MDIxOTcyMTM4NTEwNTMyGjVkNjkxMGNlYTM0ZGMxMjQ6Y29tOmVuOlVT\u0026usg=AOvVaw1xEEZpk4OBpxF_LF893YWf","fqdn":"www.revolutionsoccer.net","domain":"revolutionsoccer.net","tld":"net"},"ip":{"addr":"95.101.10.186","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"final":{"url":{"schema":"https","addr":"www.revolutionsoccer.net/news/new-england-revolution-ii-sign-defender-jared-smith\u0026ct=ga\u0026cd=CAEYBSoUMTI0MjU4MDIxOTcyMTM4NTEwNTMyGjVkNjkxMGNlYTM0ZGMxMjQ6Y29tOmVuOlVT\u0026usg=AOvVaw1xEEZpk4OBpxF_LF893YWf","fqdn":"www.revolutionsoccer.net","domain":"revolutionsoccer.net","tld":"net"},"title":"revolutionsoccer.net/news/new-england-revolution-ii-sign-defender-jared-smith\u0026ct=ga\u0026cd=CAEYBSoUMTI0MjU4MDIxOTcyMTM4NTEwNTMyGjVkNjkxMGNlYTM0ZGMxMjQ6Y29tOmVuOlVT\u0026usg=AOvVaw1xEEZpk4OBpxF_LF893YWf","dom":{"size":41,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with no line terminators","md5":"0b6dffb984ec107b1149b65a2b4f753b","sha1":"35753c6e2c88083e88ea3f9572604d071e09cc5b","sha256":"b0c819b2247f728c520a3f63594d4af31b9bfbcfc43fd6f12e5612327c0d6db8","sha512":"2c9fc2a66bd61afe4ed60034bebb28a3b94b8c3636bfbf8caa0638acf3a86123d9a7be32a0d58d82811b13f4ee024231f4effa50d9641980d2b4fc10b3d591e3","ssdeep":"","tlshash":"c49004fdf0514005dc3035c00cc113c10c1c435434014d1035c03c74c44413dcc031c4","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"www.revolutionsoccer.net/news/new-england-revolution-ii-sign-defender-jared-smith\u0026ct=ga\u0026cd=CAEYBSoUMTI0MjU4MDIxOTcyMTM4NTEwNTMyGjVkNjkxMGNlYTM0ZGMxMjQ6Y29tOmVuOlVT\u0026usg=AOvVaw1xEEZpk4OBpxF_LF893YWf","fqdn":"www.revolutionsoccer.net","domain":"revolutionsoccer.net","tld":"net"},"ip":{"addr":"95.101.10.186","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-30T15:06:22Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Malware - Botnet panel","verdict":"malware","severity":"medium","comment":"Associated with Botnet webpanel","tags":["botpanel","malware"],"meta":null},{"sensor_name":"urlquery","alert":"Malware - Botnet panel","verdict":"malware","severity":"medium","comment":"Associated with Botnet webpanel","tags":["botpanel","malware"],"meta":null}]},"summary":[{"fqdn":"www.revolutionsoccer.net","ip":{"addr":"2.19.183.52","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"domain_registered":"2000-11-15","domain_rank":2697732,"first_seen":"2012-11-06T07:54:52Z","last_seen":"2026-03-25T13:03:08.734544Z","alert_count":1,"request_count":3,"received_data":2395,"sent_data":1954,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Malware - Botnet panel","verdict":"malware","severity":"medium","comment":"Associated with Botnet webpanel","tags":["botpanel","malware"],"meta":null}]},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"www.revolutionsoccer.net/news/new-england-revolution-ii-sign-defender-jared-smith\u0026ct=ga\u0026cd=CAEYBSoUMTI0MjU4MDIxOTcyMTM4NTEwNTMyGjVkNjkxMGNlYTM0ZGMxMjQ6Y29tOmVuOlVT\u0026usg=AOvVaw1xEEZpk4OBpxF_LF893YWf","fqdn":"www.revolutionsoccer.net","domain":"revolutionsoccer.net","tld":"net"},"ip":{"addr":"2.19.183.52","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-26T15:05:57.831Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"matchcenter.mlssoccer.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 14:35:33 GMT","end":"Tue, 02 Jun 2026 14:35:32 GMT"},"fingerprint":{"sha1":"35:17:B4:0E:95:87:F9:33:C7:61:24:24:CF:2B:0E:C2:E9:3A:BC:B0","sha256":"10:64:23:9B:45:6D:55:33:2B:3B:BA:04:A8:DD:6E:63:4D:C6:95:B0:95:0D:90:0D:C9:87:CB:4B:03:88:D1:1A"}}},"request":{"raw":"GET /news/new-england-revolution-ii-sign-defender-jared-smith\u0026ct=ga\u0026cd=CAEYBSoUMTI0MjU4MDIxOTcyMTM4NTEwNTMyGjVkNjkxMGNlYTM0ZGMxMjQ6Y29tOmVuOlVT\u0026usg=AOvVaw1xEEZpk4OBpxF_LF893YWf HTTP/1.1\r\nHost: www.revolutionsoccer.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-type: text/html\r\ncontent-length: 2\r\ncache-control: max-age=0\r\ndate: Thu, 26 Mar 2026 15:05:58 GMT\r\ncontent-security-policy: default-src blob: * 'unsafe-inline' 'unsafe-eval'; script-src * blob: 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';  font-src * data: 'unsafe-inline';\r\nx-content-type-options: nosniff\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: X-UserId, authorization, accept, If-None-Match, If-Modified-Since, Content-Type, access-control-allow-origin\r\naccess-control-allow-methods: GET,POST,DELETE,PUT,OPTIONS\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=15768000 ; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/html","magic":"JSON text data","md5":"99914b932bd37a50b983c5e7c90ae93b","sha1":"bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f","sha256":"44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a","sha512":"27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd","ssdeep":"","tlshash":"c7100000000000c00000000c00000000000000000c0000000000000000000000000000","first_seen":"2023-03-07T01:15:26Z","last_seen":"2026-04-05T05:46:26.851474Z","times_seen":555496,"resource_available":true,"data":null}},"time_used":319,"timings":{"blocked":122,"dns":62,"connect":22,"send":0,"wait":75,"receive":0,"ssl":35},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.revolutionsoccer.net/news/new-england-revolution-ii-sign-defender-jared-smith\u0026ct=ga\u0026cd=CAEYBSoUMTI0MjU4MDIxOTcyMTM4NTEwNTMyGjVkNjkxMGNlYTM0ZGMxMjQ6Y29tOmVuOlVT\u0026usg=AOvVaw1xEEZpk4OBpxF_LF893YWf","fqdn":"www.revolutionsoccer.net","domain":"revolutionsoccer.net","tld":"net"},"ip":{"addr":"2.19.183.52","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-26T15:05:58.167Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"matchcenter.mlssoccer.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 14:35:33 GMT","end":"Tue, 02 Jun 2026 14:35:32 GMT"},"fingerprint":{"sha1":"35:17:B4:0E:95:87:F9:33:C7:61:24:24:CF:2B:0E:C2:E9:3A:BC:B0","sha256":"10:64:23:9B:45:6D:55:33:2B:3B:BA:04:A8:DD:6E:63:4D:C6:95:B0:95:0D:90:0D:C9:87:CB:4B:03:88:D1:1A"}}},"request":{"raw":"GET /news/new-england-revolution-ii-sign-defender-jared-smith\u0026ct=ga\u0026cd=CAEYBSoUMTI0MjU4MDIxOTcyMTM4NTEwNTMyGjVkNjkxMGNlYTM0ZGMxMjQ6Y29tOmVuOlVT\u0026usg=AOvVaw1xEEZpk4OBpxF_LF893YWf HTTP/1.1\r\nHost: www.revolutionsoccer.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-type: text/html\r\ncontent-length: 2\r\ncache-control: max-age=0\r\ndate: Thu, 26 Mar 2026 15:05:58 GMT\r\ncontent-security-policy: default-src blob: * 'unsafe-inline' 'unsafe-eval'; script-src * blob: 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';  font-src * data: 'unsafe-inline';\r\nx-content-type-options: nosniff\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: X-UserId, authorization, accept, If-None-Match, If-Modified-Since, Content-Type, access-control-allow-origin\r\naccess-control-allow-methods: GET,POST,DELETE,PUT,OPTIONS\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=15768000 ; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2,"size_decoded":0,"mime_type":"text/html","magic":"JSON text data","md5":"99914b932bd37a50b983c5e7c90ae93b","sha1":"bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f","sha256":"44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a","sha512":"27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd","ssdeep":"","tlshash":"c7100000000000c00000000c00000000000000000c0000000000000000000000000000","first_seen":"2023-03-07T01:15:26Z","last_seen":"2026-04-05T05:46:26.851474Z","times_seen":555496,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.revolutionsoccer.net/favicon.ico","fqdn":"www.revolutionsoccer.net","domain":"revolutionsoccer.net","tld":"net"},"ip":{"addr":"2.19.183.52","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Sweden","country_code":"SE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.revolutionsoccer.net/news/new-england-revolution-ii-sign-defender-jared-smith\u0026ct=ga\u0026cd=CAEYBSoUMTI0MjU4MDIxOTcyMTM4NTEwNTMyGjVkNjkxMGNlYTM0ZGMxMjQ6Y29tOmVuOlVT\u0026usg=AOvVaw1xEEZpk4OBpxF_LF893YWf","date":"2026-03-26T15:05:58.294Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"matchcenter.mlssoccer.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 04 Mar 2026 14:35:33 GMT","end":"Tue, 02 Jun 2026 14:35:32 GMT"},"fingerprint":{"sha1":"35:17:B4:0E:95:87:F9:33:C7:61:24:24:CF:2B:0E:C2:E9:3A:BC:B0","sha256":"10:64:23:9B:45:6D:55:33:2B:3B:BA:04:A8:DD:6E:63:4D:C6:95:B0:95:0D:90:0D:C9:87:CB:4B:03:88:D1:1A"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.revolutionsoccer.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.revolutionsoccer.net/news/new-england-revolution-ii-sign-defender-jared-smith\u0026ct=ga\u0026cd=CAEYBSoUMTI0MjU4MDIxOTcyMTM4NTEwNTMyGjVkNjkxMGNlYTM0ZGMxMjQ6Y29tOmVuOlVT\u0026usg=AOvVaw1xEEZpk4OBpxF_LF893YWf\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncontent-type: text/html\r\ncontent-length: 9\r\ncache-control: max-age=0\r\ndate: Thu, 26 Mar 2026 15:05:58 GMT\r\ncontent-security-policy: default-src blob: * 'unsafe-inline' 'unsafe-eval'; script-src * blob: 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';  font-src * data: 'unsafe-inline';\r\nx-content-type-options: nosniff\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: X-UserId, authorization, accept, If-None-Match, If-Modified-Since, Content-Type, access-control-allow-origin\r\naccess-control-allow-methods: GET,POST,DELETE,PUT,OPTIONS\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=15768000 ; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":9,"size_decoded":0,"mime_type":"text/html","magic":"ASCII text, with no line terminators","md5":"9d1ead73e678fa2f51a70a933b0bf017","sha1":"d205cbd6783332a212c5ae92d73c77178c2d2f28","sha256":"0019dfc4b32d63c1392aa264aed2253c1e0c2fb09216f8e2cc269bbfb8bb49b5","sha512":"935b3d516e996f6d25948ba8a54c1b7f70f7f0e3f517e36481fdf0196c2c5cfc2841f86e891f3df9517746b7fb605db47cdded1b8ff78d9482ddaa621db43a34","ssdeep":"","tlshash":"a250000c0003c3cc0000003030c0000000000300300000300000c000000000000c000c","first_seen":"2023-03-08T03:03:03Z","last_seen":"2026-04-05T04:21:59.60288Z","times_seen":69470,"resource_available":true,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Malware - Botnet panel","verdict":"malware","severity":"medium","comment":"Associated with Botnet webpanel","tags":["botpanel","malware"],"meta":null}]}}]}