{"report_id":"92dd5358-7fae-452e-afab-5bbb3b1d584f","version":6,"status":"done","tags":["phishing_box","phishing"],"date":"2026-03-09T09:55:46Z","url":{"schema":"http","addr":"updateai.cloud/","fqdn":"updateai.cloud","domain":"updateai.cloud","tld":"cloud"},"ip":{"addr":"64.191.166.205","port":0,"asn":13776,"as":"QX-NET-ASN-1","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"updateai.cloud/","fqdn":"updateai.cloud","domain":"updateai.cloud","tld":"cloud"},"title":"Phishing Simulation Landing Page","dom":{"size":2395,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"54ac7b1501d14b4337f28cbf83b9d864","sha1":"9fd6e51061f42dc5b0a4922dfae5a7a6690e6c08","sha256":"e2555124d8fa40337f9e7f6b1c39d0a28721cd961166dd4318a050a9acd89428","sha512":"c9c6976719a15f945b1c1c80a5ccb46b3a778aae950244d0fa6a71e5fcf7630c32d1acda4fb05072b6659fc02c3232dd554279b802642e54a7a7ed69e1e3d612","ssdeep":"","tlshash":"314196e65a63000ea05751019bb7314876785803c21bcc7e7bbda2dfcf909dcd623b88","dom_hash":"domhashe7f2e1a82ea76f5d6ebd935d620fd75c","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"updateai.cloud/","fqdn":"updateai.cloud","domain":"updateai.cloud","tld":"cloud"},"ip":{"addr":"64.191.166.205","port":0,"asn":13776,"as":"QX-NET-ASN-1","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-13T09:55:46Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Phishing Box","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Phishing Box","tags":["phishing_box","phishing"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Phishing Box","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Phishing Box","tags":["phishing_box","phishing"],"meta":null}]},"summary":[{"fqdn":"updateai.cloud","ip":{"addr":"64.191.166.205","port":443,"asn":13776,"as":"QX-NET-ASN-1","country":"United States","country_code":"US"},"domain_registered":"2023-08-03","domain_rank":0,"first_seen":"2026-03-09T09:55:46.926872Z","last_seen":"2026-03-09T09:55:46.926872Z","alert_count":4,"request_count":6,"received_data":291223,"sent_data":2665,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Phishing Box","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Phishing Box","tags":["phishing_box","phishing"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"updateai.cloud/assets/js/jquery.js","fqdn":"updateai.cloud","domain":"updateai.cloud","tld":"cloud"},"ip":{"addr":"64.191.166.205","port":443,"asn":13776,"as":"QX-NET-ASN-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"6c013ea4cf6af491ac038943a68ad4fe","sha1":"7704864ce63adb0d61f79acc3e5cc9ea488e35f6","sha256":"35dc8edc236b06df2825bce1b00900e2e976ecdb928b02809647e7eb2f91bfc8","sha512":"60cd96a316e40daf530e06bfd59df9f3f25826e2a072c137ceceb66f89a5eddf512e3a64b8081149249aa486a81de9e4da5e7555c4ffebd03a5585342f404f09","ssdeep":"1536:cNhEyjjTikEJO4edXXe9J578go6MWXqcVhcLyB4Lw13sh2bzrlc+iuH7U3gBORDU:axcq0hcLZwpsYbDzORDU8Cu+","tlshash":"9583d5d9b2c670529b7730b850bf450bb17a98dab44c8d60f068c5d57eb8a8e507bf2c","size":86717,"data":"","first_seen":"2023-03-07T12:08:30Z","last_seen":"2026-06-12T22:47:17.425215Z","times_seen":617,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"updateai.cloud/assets/js/bootstrap.min.js","fqdn":"updateai.cloud","domain":"updateai.cloud","tld":"cloud"},"ip":{"addr":"64.191.166.205","port":443,"asn":13776,"as":"QX-NET-ASN-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5869c96cc8f19086aee625d670d741f9","sha1":"430a443d74830fe9be26efca431f448c1b3740f9","sha256":"53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef","sha512":"8b3b64a1bb2f9e329f02d4cd7479065630184ebaed942ee61a9ff9e1ce34c28c0eecb854458977815cf3704a8697fa8a5d096d2761f032b74b70d51da3e37f45","ssdeep":"768:o2rGy27UwlNqMl95qNmCFejhqs8snmi+CSFXfbx8Gf3Zq7Q:Jg73zhq0GvbJ3ZKQ","tlshash":"b6f28606b23031a147efb1e1525b020e7239696ee906907c78b99af53db9c48717bf3d","size":37045,"data":"","first_seen":"2023-03-07T01:02:54Z","last_seen":"2026-06-14T01:03:09.960042Z","times_seen":91245,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"updateai.cloud/favicon.ico","fqdn":"updateai.cloud","domain":"updateai.cloud","tld":"cloud"},"ip":{"addr":"64.191.166.205","port":443,"asn":13776,"as":"QX-NET-ASN-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://updateai.cloud/","date":"2026-03-09T09:55:25.671Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"updateai.cloud","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 04:34:42 GMT","end":"Wed, 08 Apr 2026 04:34:41 GMT"},"fingerprint":{"sha1":"7F:21:7B:82:AC:00:50:BE:98:9B:B1:E5:26:D9:26:65:40:2F:04:DF","sha256":"79:ED:E9:C1:81:DB:F5:3A:C5:E0:02:47:2D:43:91:4C:60:33:C0:DD:5A:AB:6E:4E:4E:A3:EB:CF:81:77:7B:26"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: updateai.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://updateai.cloud/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Mon, 09 Mar 2026 09:55:25 GMT\r\nserver: Apache\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1105\r\ncontent-type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":2525,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"38cc16eaa1acec8f163cdaa9fa64dbe7","sha1":"2b9749fbd360df0c1c58445603dd868736d2c4ca","sha256":"723046d5ceb2eb04e8497bb4023081c22443db872ca416bc20cc84d032b5f741","sha512":"c5bbe3a028b6889318376fbc66df35dd71925b6d59d45b51218feffd8cf0dc118dcc90514a0ad16b6dc26927a923ecc267c0d88e004143568372f3f44a64cdb9","ssdeep":"","tlshash":"d85195aa9940080d817752329b63714cf9741547d6030d6e7bbda3978fb1acc8b73f94","first_seen":"2026-03-09T09:55:50.360273Z","last_seen":"2026-03-09T09:55:50.360273Z","times_seen":1,"resource_available":false,"data":null}},"time_used":169,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":169,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"updateai.cloud/","fqdn":"updateai.cloud","domain":"updateai.cloud","tld":"cloud"},"ip":{"addr":"64.191.166.205","port":443,"asn":13776,"as":"QX-NET-ASN-1","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-09T09:55:24.378Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"updateai.cloud","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 04:34:42 GMT","end":"Wed, 08 Apr 2026 04:34:41 GMT"},"fingerprint":{"sha1":"7F:21:7B:82:AC:00:50:BE:98:9B:B1:E5:26:D9:26:65:40:2F:04:DF","sha256":"79:ED:E9:C1:81:DB:F5:3A:C5:E0:02:47:2D:43:91:4C:60:33:C0:DD:5A:AB:6E:4E:4E:A3:EB:CF:81:77:7B:26"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: updateai.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Mon, 09 Mar 2026 09:55:24 GMT\r\nserver: Apache\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nupgrade: h2,h2c\r\nconnection: Upgrade\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1105\r\ncontent-type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2525,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"38cc16eaa1acec8f163cdaa9fa64dbe7","sha1":"2b9749fbd360df0c1c58445603dd868736d2c4ca","sha256":"723046d5ceb2eb04e8497bb4023081c22443db872ca416bc20cc84d032b5f741","sha512":"c5bbe3a028b6889318376fbc66df35dd71925b6d59d45b51218feffd8cf0dc118dcc90514a0ad16b6dc26927a923ecc267c0d88e004143568372f3f44a64cdb9","ssdeep":"","tlshash":"d85195aa9940080d817752329b63714cf9741547d6030d6e7bbda3978fb1acc8b73f94","first_seen":"2026-03-09T09:55:50.360273Z","last_seen":"2026-03-09T09:55:50.360273Z","times_seen":1,"resource_available":false,"data":null}},"time_used":956,"timings":{"blocked":406,"dns":138,"connect":131,"send":0,"wait":136,"receive":0,"ssl":141},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"updateai.cloud/assets/css/bootstrap.css","fqdn":"updateai.cloud","domain":"updateai.cloud","tld":"cloud"},"ip":{"addr":"64.191.166.205","port":443,"asn":13776,"as":"QX-NET-ASN-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://updateai.cloud/","date":"2026-03-09T09:55:25.059Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"updateai.cloud","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 04:34:42 GMT","end":"Wed, 08 Apr 2026 04:34:41 GMT"},"fingerprint":{"sha1":"7F:21:7B:82:AC:00:50:BE:98:9B:B1:E5:26:D9:26:65:40:2F:04:DF","sha256":"79:ED:E9:C1:81:DB:F5:3A:C5:E0:02:47:2D:43:91:4C:60:33:C0:DD:5A:AB:6E:4E:4E:A3:EB:CF:81:77:7B:26"}}},"request":{"raw":"GET /assets/css/bootstrap.css HTTP/1.1\r\nHost: updateai.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://updateai.cloud/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Mon, 09 Mar 2026 09:55:25 GMT\r\nserver: Apache\r\nlast-modified: Mon, 06 Nov 2023 21:15:03 GMT\r\netag: \"23a5a-6098258f67fcc-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 21330\r\ncontent-type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":146010,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (540)","md5":"2a31dca112f26923b51676cb764c58d5","sha1":"f597f59f955cda06e5d7a79342d9e0c22b5ec6d2","sha256":"7e630d90c7234b0df1729f62b8f9e4bbfaf293d91a5a0ac46df25f2a6759e39a","sha512":"a658bd68aabbe7c3cc76caa3340f80bb8089ed96ad2c20978a79e549fbf4db7cf8c66ce5f2cf896e3daa351ed123c0ecc45a797bc3af6d8183002cca9ed644f7","ssdeep":"1536:n8dvmSUZjywX7H53/BHsWj8g1UCFz96nOdG/JP9IZptcJ23NsOCj+:noUZO4ZpHkgCc8nOU/JP9IZptcJ23z","tlshash":"b7e395d8f6b039407223c09835938e52b71d9143d41fed79b7ea35acafc81958973b8a","first_seen":"2023-04-05T04:22:28Z","last_seen":"2026-06-14T00:20:47.665092Z","times_seen":3944,"resource_available":false,"data":null}},"time_used":274,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":273,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Phishing Box","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Phishing Box","tags":["phishing_box","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"updateai.cloud/assets/img/phishingbox_logo.png","fqdn":"updateai.cloud","domain":"updateai.cloud","tld":"cloud"},"ip":{"addr":"64.191.166.205","port":443,"asn":13776,"as":"QX-NET-ASN-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://updateai.cloud/","date":"2026-03-09T09:55:25.060Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"updateai.cloud","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 04:34:42 GMT","end":"Wed, 08 Apr 2026 04:34:41 GMT"},"fingerprint":{"sha1":"7F:21:7B:82:AC:00:50:BE:98:9B:B1:E5:26:D9:26:65:40:2F:04:DF","sha256":"79:ED:E9:C1:81:DB:F5:3A:C5:E0:02:47:2D:43:91:4C:60:33:C0:DD:5A:AB:6E:4E:4E:A3:EB:CF:81:77:7B:26"}}},"request":{"raw":"GET /assets/img/phishingbox_logo.png HTTP/1.1\r\nHost: updateai.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://updateai.cloud/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Mon, 09 Mar 2026 09:55:25 GMT\r\nserver: Apache\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nlast-modified: Wed, 14 Sep 2022 19:02:17 GMT\r\netag: \"391f-5e8a7c4813ccc\"\r\naccept-ranges: bytes\r\ncontent-length: 14623\r\ncontent-type: image/png\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14623,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1200 x 523, 8-bit colormap, non-interlaced","md5":"dbd7fc56bc4da8db26060ace8755af73","sha1":"3da1f0716f969c4c621e0b0a688c6638df72a6b3","sha256":"537772c08f4088cd4c535a38aad43346ea650b1f964cefae4b91e3def40721cd","sha512":"5224618ac640bf008ec04d5fd3f7629f10011841805cf612cd0afd4c4f486c81ae774829c307a522a1c3140f7bad310746db2a5947fd1aea3895f7894cbe3713","ssdeep":"192:y4Dob6OF46tQ3VISVG2Zlk2fZ4MsZMcN81AoEonypo7qXqMkHddqTHyKPOds56U:yB6otQ9JZlRfZTGM+8+RSy2OXSLq2+","tlshash":"5362c0763625f6e4e07dd7fdb67069112206e39eead2386314a9638ec8d70cced5b900","first_seen":"2023-05-01T05:35:39Z","last_seen":"2026-06-12T22:47:17.428191Z","times_seen":617,"resource_available":false,"data":null}},"time_used":463,"timings":{"blocked":272,"dns":0,"connect":0,"send":0,"wait":190,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Phishing Box","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Phishing Box","tags":["phishing_box","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"updateai.cloud/assets/js/bootstrap.min.js","fqdn":"updateai.cloud","domain":"updateai.cloud","tld":"cloud"},"ip":{"addr":"64.191.166.205","port":443,"asn":13776,"as":"QX-NET-ASN-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://updateai.cloud/","date":"2026-03-09T09:55:25.066Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"updateai.cloud","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 04:34:42 GMT","end":"Wed, 08 Apr 2026 04:34:41 GMT"},"fingerprint":{"sha1":"7F:21:7B:82:AC:00:50:BE:98:9B:B1:E5:26:D9:26:65:40:2F:04:DF","sha256":"79:ED:E9:C1:81:DB:F5:3A:C5:E0:02:47:2D:43:91:4C:60:33:C0:DD:5A:AB:6E:4E:4E:A3:EB:CF:81:77:7B:26"}}},"request":{"raw":"GET /assets/js/bootstrap.min.js HTTP/1.1\r\nHost: updateai.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://updateai.cloud/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Mon, 09 Mar 2026 09:55:25 GMT\r\nserver: Apache\r\nupgrade: h2,h2c\r\nconnection: Upgrade\r\nlast-modified: Thu, 17 Jul 2025 20:28:24 GMT\r\netag: \"90b5-63a25d9eee527-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 9833\r\ncontent-type: application/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":37045,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32033)","md5":"5869c96cc8f19086aee625d670d741f9","sha1":"430a443d74830fe9be26efca431f448c1b3740f9","sha256":"53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef","sha512":"8b3b64a1bb2f9e329f02d4cd7479065630184ebaed942ee61a9ff9e1ce34c28c0eecb854458977815cf3704a8697fa8a5d096d2761f032b74b70d51da3e37f45","ssdeep":"768:o2rGy27UwlNqMl95qNmCFejhqs8snmi+CSFXfbx8Gf3Zq7Q:Jg73zhq0GvbJ3ZKQ","tlshash":"b6f28606b23031a147efb1e1525b020e7239696ee906907c78b99af53db9c48717bf3d","first_seen":"2023-03-07T01:02:54Z","last_seen":"2026-06-14T01:03:09.960042Z","times_seen":91245,"resource_available":true,"data":null}},"time_used":721,"timings":{"blocked":273,"dns":1,"connect":132,"send":0,"wait":165,"receive":1,"ssl":146},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Phishing Box","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Phishing Box","tags":["phishing_box","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"updateai.cloud/assets/js/jquery.js","fqdn":"updateai.cloud","domain":"updateai.cloud","tld":"cloud"},"ip":{"addr":"64.191.166.205","port":443,"asn":13776,"as":"QX-NET-ASN-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://updateai.cloud/","date":"2026-03-09T09:55:25.061Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"updateai.cloud","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 08 Jan 2026 04:34:42 GMT","end":"Wed, 08 Apr 2026 04:34:41 GMT"},"fingerprint":{"sha1":"7F:21:7B:82:AC:00:50:BE:98:9B:B1:E5:26:D9:26:65:40:2F:04:DF","sha256":"79:ED:E9:C1:81:DB:F5:3A:C5:E0:02:47:2D:43:91:4C:60:33:C0:DD:5A:AB:6E:4E:4E:A3:EB:CF:81:77:7B:26"}}},"request":{"raw":"GET /assets/js/jquery.js HTTP/1.1\r\nHost: updateai.cloud\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://updateai.cloud/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\ndate: Mon, 09 Mar 2026 09:55:25 GMT\r\nserver: Apache\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\nupgrade: h2,h2c\r\nconnection: Upgrade\r\nlast-modified: Wed, 14 Sep 2022 19:02:19 GMT\r\netag: \"152bd-5e8a7c49f5cb8-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 30085\r\ncontent-type: application/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":86717,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32030), with CR line terminators","md5":"6c013ea4cf6af491ac038943a68ad4fe","sha1":"7704864ce63adb0d61f79acc3e5cc9ea488e35f6","sha256":"35dc8edc236b06df2825bce1b00900e2e976ecdb928b02809647e7eb2f91bfc8","sha512":"60cd96a316e40daf530e06bfd59df9f3f25826e2a072c137ceceb66f89a5eddf512e3a64b8081149249aa486a81de9e4da5e7555c4ffebd03a5585342f404f09","ssdeep":"1536:cNhEyjjTikEJO4edXXe9J578go6MWXqcVhcLyB4Lw13sh2bzrlc+iuH7U3gBORDU:axcq0hcLZwpsYbDzORDU8Cu+","tlshash":"9583d5d9b2c670529b7730b850bf450bb17a98dab44c8d60f068c5d57eb8a8e507bf2c","first_seen":"2023-03-07T12:08:30Z","last_seen":"2026-06-12T22:47:17.425215Z","times_seen":617,"resource_available":true,"data":null}},"time_used":849,"timings":{"blocked":271,"dns":0,"connect":128,"send":0,"wait":253,"receive":50,"ssl":142},"alerts":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Phishing Box","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Phishing Box","tags":["phishing_box","phishing"],"meta":null}]}}]}