{"report_id":"94714b1f-8f44-427b-b197-a7691a26cd1e","version":6,"status":"done","tags":[],"date":"2024-08-15T23:35:13Z","url":{"schema":"http","addr":"cdn.vitsoft.org.ua/Download/Vit%20Registry%20Fix%20Free%20Edition%20Setup.exe","fqdn":"cdn.vitsoft.org.ua","domain":"vitsoft.org.ua","tld":"org.ua"},"ip":{"addr":"217.182.53.72","port":0,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"final":{"url":{"schema":"http","addr":"cdn.vitsoft.org.ua/Download/Vit%20Registry%20Fix%20Free%20Edition%20Setup.exe","fqdn":"cdn.vitsoft.org.ua","domain":"vitsoft.org.ua","tld":"org.ua"},"title":"404 Not Found"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-24T23:36:28Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"","domain_rank":0,"first_seen":"","last_seen":"","alert_count":0,"request_count":3,"received_data":2661,"sent_data":981,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r11.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"","domain_rank":0,"first_seen":"","last_seen":"","alert_count":0,"request_count":3,"received_data":2662,"sent_data":981,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.vitsoft.org.ua","ip":{"addr":"217.182.53.72","port":0,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"domain_registered":"","domain_rank":0,"first_seen":"","last_seen":"","alert_count":0,"request_count":2,"received_data":594,"sent_data":852,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2024-08-15T23:34:48Z","timestamp":1723764888,"ip_dst":{"addr":"Client IP","port":40038,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"217.182.53.72","port":443,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"severity":"high","alert":"ET HUNTING Self-Signed Cert O=XX Observed","source":"{\"timestamp\":\"2024-08-15T23:34:48.827660+0000\",\"flow_id\":1876873069490442,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"217.182.53.72\",\"src_port\":443,\"dest_ip\":\"172.18.0.17\",\"dest_port\":40038,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2018284,\"rev\":5,\"signature\":\"ET HUNTING Self-Signed Cert O=XX Observed\",\"category\":\"A Network Trojan was detected\",\"severity\":1,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2014_03_17\"],\"deployment\":[\"Perimeter\"],\"reviewed_at\":[\"2024_04_23\"],\"signature_severity\":[\"Minor\"],\"updated_at\":[\"2022_06_28\"]}},\"tls\":{\"subject\":\"C=XX, CN=217.182.53.72, L=XX, O=XX, OU=XX, ST=XX, Email=webmaster@217.182.53.72, subjectAltName=www.217.182.53.72\",\"issuerdn\":\"C=XX, CN=217.182.53.72, L=XX, O=XX, OU=XX, ST=XX, Email=webmaster@217.182.53.72, subjectAltName=www.217.182.53.72\",\"serial\":\"00:A6:1A:AE:12:F1:7D:B1:39\",\"fingerprint\":\"81:ff:9b:d8:ff:7d:93:07:eb:ef:14:11:95:ce:7f:55:bd:d3:d7:ec\",\"sni\":\"cdn.vitsoft.org.ua\",\"version\":\"TLS 1.2\",\"notbefore\":\"2024-05-06T07:18:09\",\"notafter\":\"2025-05-05T07:18:09\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"c4b2785a87896e19d37eee932070cb22\",\"string\":\"771,49199,0-65281-11-16\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":7,\"pkts_toclient\":4,\"bytes_toserver\":1144,\"bytes_toclient\":1748,\"start\":\"2024-08-15T23:34:48.749834+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-15T23:34:48.081652765Z","timestamp":1723764888081,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"7098A3B23AECE2B00E86FD3A23C5E532001A5002B061170D3ED53DDD36BF8F5B\"\r\nLast-Modified: Tue, 13 Aug 2024 18:27:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=4358\r\nExpires: Fri, 16 Aug 2024 00:47:26 GMT\r\nDate: Thu, 15 Aug 2024 23:34:48 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"90149b127cd563315012f026a9e0544f","sha1":"1e148905fa524fb8fec15249f30f33085978dc2e","sha256":"7098a3b23aece2b00e86fd3a23c5e532001a5002b061170d3ed53ddd36bf8f5b","sha512":"6d23b8b74a8ed007fa56a56b90c5e4ee8c9e8826bcf40ad07ce28c3bcc9e108585f2bc508082be6139bba764d2f7c952580e725111c250ebfd2516f0ab415e81","ssdeep":"","tlshash":"6af07562027b3591583220207bd8c4272e22357a301014c365e006c62c44b90009c50c","first_seen":"2024-08-14T02:14:38Z","last_seen":"2024-08-19T13:24:25.753269Z","times_seen":24170,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-15T23:34:48.084211603Z","timestamp":1723764888084,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"8902058E383C2F43751417E1AF1D582F7A16CE0B6FC180AB20CBC76C4B00F914\"\r\nLast-Modified: Wed, 14 Aug 2024 12:55:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=13504\r\nExpires: Fri, 16 Aug 2024 03:19:52 GMT\r\nDate: Thu, 15 Aug 2024 23:34:48 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"686480d25645ac2aca7a99974693a82f","sha1":"55ca9d53bd758d2afc75e8a9b59c656ff26a3f70","sha256":"8902058e383c2f43751417e1af1d582f7a16ce0b6fc180ab20cbc76c4b00f914","sha512":"65af6a10b322fb730377c398ae9185f820a73b8bc5f6488927d2664e39fbb75979a13ec0932cbc3734ae938d530328c525b750e9c0d48413a5d512295610148c","ssdeep":"","tlshash":"1cf0750e15196a6410a18c694ffcc8b30031b451309f316bdd4c54f53021bff098410d","first_seen":"2024-08-14T14:57:02Z","last_seen":"2024-08-19T13:21:13.094181Z","times_seen":48873,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-15T23:34:48.369576427Z","timestamp":1723764888369,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"9EF3DAB56215A67804DB0E12D33772A1902F5914B788530717712902A294BCB5\"\r\nLast-Modified: Wed, 14 Aug 2024 21:59:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=7216\r\nExpires: Fri, 16 Aug 2024 01:35:04 GMT\r\nDate: Thu, 15 Aug 2024 23:34:48 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"4d209e16679910b467c26590a0073236","sha1":"ddd59fa6902b498e9c0cfb22e342757f954789d0","sha256":"9ef3dab56215a67804db0e12d33772a1902f5914b788530717712902a294bcb5","sha512":"c51db05572ffd286971584fdb91cb70c2dbbca943460845163bbe781c5282225dfccb7121773c517ad3185efeab960a2adcdf13a765219d4843f808a51bc77fd","ssdeep":"","tlshash":"d2f005de12f0b550dab5490569e9e0156c50c5ec3b0541c5738016da16a07fc9f8150c","first_seen":"2024-08-15T00:00:44Z","last_seen":"2024-08-19T13:17:36.886871Z","times_seen":49254,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-15T23:34:48.614333717Z","timestamp":1723764888614,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"62ACC6047405E1E5E89C898325A6F5BA2D9F993214648DC9E50CF0D4F5AA9BAA\"\r\nLast-Modified: Tue, 13 Aug 2024 18:27:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=4110\r\nExpires: Fri, 16 Aug 2024 00:43:18 GMT\r\nDate: Thu, 15 Aug 2024 23:34:48 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"e4a9f1133ab7ff8fdfec972dc9d80181","sha1":"2a253964c7b022d903b90b57585333f32f730527","sha256":"62acc6047405e1e5e89c898325a6f5ba2d9f993214648dc9e50cf0d4f5aa9baa","sha512":"ff4caa233cfb73b8d7263ab83a94567daf14edefcd5fd1c6eb16fcabfb01afa146db3d639caa64ee91202ce0bcb065f4eea9339a5fa37094c31796895d62cb75","ssdeep":"","tlshash":"46f00eda21faf88167e09185aaecd4622c20b56d385045d9149c06eb94807c59e598de","first_seen":"2024-08-14T03:08:11Z","last_seen":"2024-08-19T13:24:19.880186Z","times_seen":16024,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.vitsoft.org.ua/Download/Vit%20Registry%20Fix%20Free%20Edition%20Setup.exe","fqdn":"cdn.vitsoft.org.ua","domain":"vitsoft.org.ua","tld":"org.ua"},"ip":{"addr":"217.182.53.72","port":0,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-08-15T23:34:48.574Z","timestamp":1723764888574,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /Download/Vit%20Registry%20Fix%20Free%20Edition%20Setup.exe HTTP/1.1\r\nHost: cdn.vitsoft.org.ua\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.20.2\r\nDate: Thu, 15 Aug 2024 23:34:48 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":113,"size_decoded":153,"mime_type":"","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"a53e183b2c571a68b246ad570b76da19","sha1":"7eac95d26ba1e92a3b4d6fd47ee057f00274ac13","sha256":"29574dc19a017adc4a026deb6d9a90708110eafe9a6acdc6496317382f9a4dc7","sha512":"1ca8f70acd82a194984a248a15541e0d2c75e052e00fc43c1c6b6682941dad6ce4b6c2cab4833e208e79f3546758c30857d1d4a3b05d8e571f0ce7a3a5b357be","ssdeep":"","tlshash":"3bc02b6d3913bc4cca63327422c37580c0c6833764ba81128440800331cf2998ac3397","first_seen":"2023-04-05T07:24:51Z","last_seen":"2026-03-31T09:30:23.851589Z","times_seen":2371,"resource_available":true,"data":null}},"time_used":237,"timings":{"blocked":0,"dns":179,"connect":21,"send":0,"wait":0,"receive":0,"ssl":33},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"cdn.vitsoft.org.ua/favicon.ico","fqdn":"cdn.vitsoft.org.ua","domain":"vitsoft.org.ua","tld":"org.ua"},"ip":{"addr":"217.182.53.72","port":80,"asn":16276,"as":"OVH SAS","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://cdn.vitsoft.org.ua/Download/Vit%20Registry%20Fix%20Free%20Edition%20Setup.exe","date":"2024-08-15T23:34:48.968Z","timestamp":1723764888968,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: cdn.vitsoft.org.ua\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://cdn.vitsoft.org.ua/Download/Vit%20Registry%20Fix%20Free%20Edition%20Setup.exe\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.20.2\r\nDate: Thu, 15 Aug 2024 23:34:48 GMT\r\nContent-Type: text/html\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nContent-Encoding: gzip\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":113,"size_decoded":153,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"a53e183b2c571a68b246ad570b76da19","sha1":"7eac95d26ba1e92a3b4d6fd47ee057f00274ac13","sha256":"29574dc19a017adc4a026deb6d9a90708110eafe9a6acdc6496317382f9a4dc7","sha512":"1ca8f70acd82a194984a248a15541e0d2c75e052e00fc43c1c6b6682941dad6ce4b6c2cab4833e208e79f3546758c30857d1d4a3b05d8e571f0ce7a3a5b357be","ssdeep":"","tlshash":"3bc02b6d3913bc4cca63327422c37580c0c6833764ba81128440800331cf2998ac3397","first_seen":"2023-04-05T07:24:51Z","last_seen":"2026-03-31T09:30:23.851589Z","times_seen":2371,"resource_available":true,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-15T23:34:50.160703445Z","timestamp":1723764890160,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"BC868B2A34FE0C66D7A2DC1754676CC4031891C797FDD23E82D135559BD82C1B\"\r\nLast-Modified: Thu, 15 Aug 2024 09:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=4100\r\nExpires: Fri, 16 Aug 2024 00:43:10 GMT\r\nDate: Thu, 15 Aug 2024 23:34:50 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"3c14cfb85dc9ceb923d7d3c3648719d2","sha1":"10ea83f83398870f50ca771216ad77bd95aa66cc","sha256":"bc868b2a34fe0c66d7a2dc1754676cc4031891c797fdd23e82d135559bd82c1b","sha512":"f7aa414187e10cf43769c1dd5b41854c950818d405478bc358e72a6d3ec1840ee4fd5bc47abd9226b28efae0fd7aa00d99f99f28dc1c128d9d02ab27584ddbaa","ssdeep":"","tlshash":"56f00e82b56ae8c08225287e8bc0e23a6b21fde960a174a6cad8e3d57911bb9904441c","first_seen":"2024-08-15T16:26:58Z","last_seen":"2024-08-19T13:13:27.281679Z","times_seen":45417,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-08-15T23:34:50.161400255Z","timestamp":1723764890161,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"BC868B2A34FE0C66D7A2DC1754676CC4031891C797FDD23E82D135559BD82C1B\"\r\nLast-Modified: Thu, 15 Aug 2024 09:16:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=4100\r\nExpires: Fri, 16 Aug 2024 00:43:10 GMT\r\nDate: Thu, 15 Aug 2024 23:34:50 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"3c14cfb85dc9ceb923d7d3c3648719d2","sha1":"10ea83f83398870f50ca771216ad77bd95aa66cc","sha256":"bc868b2a34fe0c66d7a2dc1754676cc4031891c797fdd23e82d135559bd82c1b","sha512":"f7aa414187e10cf43769c1dd5b41854c950818d405478bc358e72a6d3ec1840ee4fd5bc47abd9226b28efae0fd7aa00d99f99f28dc1c128d9d02ab27584ddbaa","ssdeep":"","tlshash":"56f00e82b56ae8c08225287e8bc0e23a6b21fde960a174a6cad8e3d57911bb9904441c","first_seen":"2024-08-15T16:26:58Z","last_seen":"2024-08-19T13:13:27.281679Z","times_seen":45417,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}