{"report_id":"99793c2a-706e-41f9-bd5f-5fb18ed06d35","version":6,"status":"done","tags":[],"date":"2026-03-05T00:59:02Z","url":{"schema":"http","addr":"musicuae.top","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":0,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"final":{"url":{"schema":"https","addr":"musicuae.top/","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"title":"Spotify Premium (United Arab Emirates) - Try 1 year for AED 10","dom":{"size":199100,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (10064)","md5":"8ca028739913aa2e2f17668c2ea8dad7","sha1":"b436e361cf6e28b4772142908deefc22e54215fc","sha256":"8c8183e856c89f823482e0a145fbdcbb55cc7a8f6080536f1e9f1904139a88a9","sha512":"6c4956bd1909ce3c188b3b7c608dec667211a3fe7f8667b990536352395243df761c05b17d63d1cdd8b371bff8cf157e0f6d3c539e2ee7bce561d1989fe25aed","ssdeep":"3072:GHXxURblHq+Q0nfLA8JnviLZkiZqRTdET8jNJfaHK:mXxUlTQcLA8MLZkiZqRTdET8jNJfx","tlshash":"c014e5b2b784203e904b47e4937b391c129d70aafe517ab4b57e4bf69be3e52d107810","dom_hash":"domhash29b39873b04ef355691b18e112a48e5b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"musicuae.top","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":0,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-09T00:59:02Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":1,"urlquery":0,"analyzer":6}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-05T00:58:39Z","timestamp":1772672319,"ip_dst":{"addr":"Client IP","port":58674,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"severity":"medium","alert":"ET DROP Spamhaus DROP Listed Traffic Inbound group 62","source":"{\"timestamp\":\"2026-03-05T00:58:39.326516+0000\",\"flow_id\":978908228857812,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"212.224.93.239\",\"src_port\":443,\"dest_ip\":\"172.18.0.47\",\"dest_port\":58674,\"proto\":\"TCP\",\"metadata\":{\"flowbits\":[\"ET.Evil\",\"ET.DROPIP\"]},\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2400061,\"rev\":4421,\"signature\":\"ET DROP Spamhaus DROP Listed Traffic Inbound group 62\",\"category\":\"Misc Attack\",\"severity\":2,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Any\"],\"created_at\":[\"2010_12_30\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Minor\"],\"tag\":[\"Dshield\"],\"updated_at\":[\"2025_08_01\"]}},\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":1,\"bytes_toserver\":74,\"bytes_toclient\":74,\"start\":\"2026-03-05T00:58:39.307156+0000\"}}"}],"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-03-05","alert":"Hunting_JS_WebAssembly","trigger":"musicuae.top/files/564-940ecc6986c2986c.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}},{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-03-05","alert":"Hunting_JS_WebAssembly","trigger":"musicuae.top/files/8bdd1454-6e6c82a9995e1063.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null},"summary":[{"fqdn":"wwwmarketing.scdn.co","ip":{"addr":"23.36.77.107","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2010-08-20","domain_rank":277718,"first_seen":"2019-10-17T10:33:03Z","last_seen":"2025-10-30T12:14:18.38176Z","alert_count":0,"request_count":5,"received_data":9892690,"sent_data":2469,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"musicuae.top","ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"domain_registered":"2026-03-02","domain_rank":0,"first_seen":"2026-03-05T00:59:05.404597Z","last_seen":"2026-03-05T00:59:05.404597Z","alert_count":82,"request_count":20,"received_data":2938670,"sent_data":9143,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"encore.scdn.co","ip":{"addr":"23.36.77.105","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2010-08-20","domain_rank":53494,"first_seen":"2020-07-15T14:12:23Z","last_seen":"2026-02-27T16:38:14.663114Z","alert_count":0,"request_count":4,"received_data":520960,"sent_data":2207,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"musicuae.top/","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"ebcdadeee81d0ee3d30b3defcc9ef738","sha1":"6260968ea0c6fd018ae4d781f142877c80d8984d","sha256":"b6e2b2667ff7c9cc3f30d3038a2fe4bd23eb7a5a3a482b0949e72a6f59f69de8","sha512":"de9eaa22344555b086d51079835e072187362051a218806728b4ce858e709037edf95f5a401aab930524e2e5c6a7926603a299f4f8dd9d40d8e5d62bed045e80","ssdeep":"","tlshash":"b29004755d004d344dcd044d7075c7c43d300c40f4473010405dd44d0530dc5d410fc4","size":51,"data":"","first_seen":"2023-03-07T12:11:40Z","last_seen":"2026-06-06T12:35:02.051573Z","times_seen":3489,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"bc3bfa2cd1687b1503be8f25da18df37","sha1":"17eb64da55707c90582fa389d568af620bc280d6","sha256":"2fabf8a18c140743ddc3369e5c70f018d82ae8c62cd41f2d9d713ae2c8b3df8a","sha512":"a1064801984528f11216f23084af5a6b26b6e24d18716de5b2c572a0c15b5508388d73c778bfe202e6127190e09a84c79c093de1eddc0529f8c0e8bc3ffd42c5","ssdeep":"","tlshash":"bef05c3b3de4147044bb712a175f8344357248033090ac027a6e8a405f98fe807f6c87","size":468,"data":"","first_seen":"2026-03-05T00:59:11.009214Z","last_seen":"2026-03-14T23:34:43.76752Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"cdc7b1d498fc182d2e29c6eba43658e1","sha1":"db7663e883a7af5056e5b1a31a060e5bac8e8f09","sha256":"6c678678af6168e0bb7881f830829d224a32f7da74011681b87322b95e9b4053","sha512":"f241fb14666a94231949c5c1077c3f5944f24c0777b277737931387bf85f6a1133bc55320599fba26389c82963546e006c55981fcf73823265d8fc754184f276","ssdeep":"","tlshash":"7441dd9659fa1b70023772b99b5b3844b13718a72014eb17394d67c93fe120c226eae7","size":2292,"data":"","first_seen":"2026-03-05T00:59:11.010764Z","last_seen":"2026-03-14T23:34:43.768053Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"3f14afaaea47e9a2e02f1a477f5c0e80","sha1":"60dca73e8df3b85496400e8609435079fc8b954a","sha256":"4dac299e3a1b41ba782fb2ccf0bec75cfde248ada2ae7c1c1f0ce76a74fc45bf","sha512":"3a145f97a9a2f7a2093a220ea74d32b549e848b0b5c4aa9e003dd6c135e66f2b7f6723cb6ed1722da19dc3e0f508640d895176cb2f8c84755e72bbd12bc629aa","ssdeep":"","tlshash":"f5512126f6f31531152fb13c9b1aa3053872405b2405cd213e6d4b9d7fd0a5446b6fde","size":3032,"data":"","first_seen":"2026-03-05T00:59:11.012873Z","last_seen":"2026-03-14T23:34:43.771516Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/dt-7scsKMXYBS1WCjk1yGfrZdGi7sW6KP","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"104af65e035948cc6344bc6ca90e7de4","sha1":"e1cdc61a1f0b81603e77bb2296f99171eeb3bfa7","sha256":"ac8551d01ad7543d15459d0a42437b6d26627fdf27f63e4104319b09c94dabf1","sha512":"2026ba21a19e056c25f844991198e4962e8801fa934a030f99852640fcd1a4695e94a5fa727c219edd778793f0fcae29469dd3a3a61ddc8655d1193ae082e3c5","ssdeep":"12288:h0ZBKMzJfnTHLhJAD072R5Kz67nVLvqllyREcwasBpZLZU0M5adq:h0ZBKelWH5aq","tlshash":"f8d45c543106603a29a759b6f89fb30e7739ab52d90057c1f6d948a34fdce48a22fd3c","size":654894,"data":"","first_seen":"2026-03-05T00:59:11.014313Z","last_seen":"2026-03-14T23:34:43.754171Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/main-a947eab3b5970c93.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"31c6753b50e37583650ea7560070390b","sha1":"537a2b3778592e0ae7b3aa91f07fa1e01e41f46e","sha256":"56264a3988e77c5b5b376d7920ade0c837c6053690b992d0dc6156744710985d","sha512":"86d4a7aef1bd004e34c9e9ce44c976635bc86a36de9e2b813c5dc0f6b671aab8ad3fc715cadc71f755bea078c271cfdd2ffef50e5718478809bbccb241d70f37","ssdeep":"3072:sxM+N/xezt/04NJO0twcoauIms3qZ2Kl926yqWkwVWVjSySKhVsYhcGzNO:sx5N/xehzjZoau1si2KfQq/V/ueO","tlshash":"be4417f673d2f47203ab01a4903b0002f37a4da5141e5469f3a9dcde79a499da2f2f79","size":266930,"data":"","first_seen":"2026-03-05T00:59:10.991903Z","last_seen":"2026-03-14T23:34:43.764966Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/framework-ac6e973895ed064a.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"38b4236df4454597da4d65241d692a16","sha1":"dba82bb652e6f1db9714da6119310865a7240be9","sha256":"9405aad7bb3eb3e44aa1f5effcd8736a5119adf9b5ab21c6910a14240c6668a9","sha512":"e68231b6cfd406923a4541cb8fecb7d295c0a470c017b1b9f9be7fef2c12308e6519f86b3cc9644c9be55bac08194906ccc995bbf8142e7e8434aac1f4e67d60","ssdeep":"1536:nBfw+oWdvJtAucjir0PeapI+HmsQ75q34rr9XBu3Kwtj6SEiR1FEp4nwF/eMDqAy:GLuclPemGFqi9XBuptjm1JJeFP","tlshash":"e704fae83955f2526eb352b7009f2803737c262b280d4d60a211fd9db5b845eb17bf9e","size":183509,"data":"","first_seen":"2025-10-30T12:14:04.268913Z","last_seen":"2026-03-14T23:34:43.755424Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/3-04fa6b20fef9c81b.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"4ebc795cac71489223ccb00c043c3a84","sha1":"05b7a940956b03e72583d2253b440bfc975f0469","sha256":"31f692c7039c93491b175342ef9ea304424090e7e49860874c2c55ef62488799","sha512":"3d4ba17f27245cd148ffd56f82de4c9997cfb7fdde7d37cbe99e6d356faa638aab84b4cb65a43b92388eb02eb57c9634dfd8ec284a4a86821154549de6018ecd","ssdeep":"384:0O+kUiD8TuTTEUq6vPcJ3vYc+FviwzWqWI/6fW4/VayUcAT2TpTgTbw0iVlRw2U/:QiWITrO8vpWzISf/wA5+MRwppZ","tlshash":"f5e2d8b572516875b2df0bedc176314c92ae1344c9c60e3cb118b978d3baad931e2bc6","size":33281,"data":"","first_seen":"2026-03-05T00:59:10.95535Z","last_seen":"2026-03-14T23:34:43.727438Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"ed10b1d0e8f02412a6115ff1bd5f004f","sha1":"591840fcc9051a3b59b1407d1d808d0422e398dd","sha256":"be5ba6771a4a43c541d76ebf0db0be2f34ff6874186f05e189e68b0280be37f8","sha512":"7d452fae9cb621b3e1463172f117292844ba3aab136b38843ce3c64a3110e593bc8e9fd93bd88d09a7d3cfc2bbf1b8443514bfc9be0b52e7a95549d104ad2acb","ssdeep":"","tlshash":"155137198db318d85d36b1276f2f570830a6022b715eca50bc4e4f6d2fe17255590bf5","size":2974,"data":"","first_seen":"2026-03-05T00:59:11.016171Z","last_seen":"2026-03-14T23:34:43.7732Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"2dc0917c92abfbe3bf0126e89fb50de5","sha1":"fb37936d02583dc30515de29f57e66bb6af5f706","sha256":"02ebacc6355778fc05b13349f5678f1642b4f6757e5869edaa3aba8d547c6808","sha512":"30b169fe33e87a63a5b721c1988b289acd4021bb896b325b887c69f1316d9f3f9196d9af19d49e35ed1da84b119d41ebb05eb3cc462fe5e1a15fd27043e2a9fd","ssdeep":"","tlshash":"d40128355fa028ad10f6b291665f578c317e039f73ea868121742e357fd6a3165a00e1","size":714,"data":"","first_seen":"2026-03-05T00:59:11.018265Z","last_seen":"2026-03-14T23:34:43.774086Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"db72b49da9c0dd135d0f895cad1bcec9","sha1":"197609874fd2637a35a615d6a2590da13330403c","sha256":"7a286c8ad7de7651483d0cd6622c7f0aace8e13cf47c5d7d2c201abac418e8c8","sha512":"05cb4c2f7c3cd69be1b4cdf3833eee832a226b182dce3afecf4cbee6f2644d321fa18b04fd22e56be2c1fabea9bde1cb8b59bcc6e53c1d71f58fa99f34283f5c","ssdeep":"","tlshash":"f2511006b9fa29710537b2bd135bac00643708536048ce0a799f6bc92fe1b1827e6ed7","size":2829,"data":"","first_seen":"2026-03-05T00:59:11.021352Z","last_seen":"2026-03-14T23:34:43.774687Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/webpack-80f7eff0f8777b94.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"5efdbe57631077f31f92d20f28fa06e5","sha1":"900a08f47f6d6b83f27a6c7129b252ef5919ae78","sha256":"518d834a488535a0cce042ca6800fe2dcb806556bbbeb6e486d129b8c3f521f5","sha512":"06c5db0cc21ea5185284abc4174e90dabebb107390863789aff5742d0618ef4019f614a62c01b5c6f4b2a9a9dc490eef704c922bb7007a257d69f769b4663f15","ssdeep":"","tlshash":"235130d01ab09462562a17dc893f9403f329443b439cf9e0f765ceb935b059b4a64fe7","size":2769,"data":"","first_seen":"2025-10-30T12:14:04.255946Z","last_seen":"2026-03-14T23:34:43.759874Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/_buildManifest.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"914631466ce34144714ae28f8b3efecf","sha1":"e80ab8901f116b27c5edb197cdfe7889a19d7c99","sha256":"f0b48906e027abd2e99a1f4fa3df7f33e3d260915218fcbc840a8e6a026c9d6d","sha512":"68f0bdd80c0974d5e994262df40f55e6b60e7d97ebbf5390f1f4f7599a47f358feace6e9326853a38bb0ccddb821617c70278e4ecf2c06d242d9d519a511b598","ssdeep":"","tlshash":"c9417c730803ff459df2dc85b46f97b3eec6b5b312b04395c2dc0a6905a30928b6ca19","size":2372,"data":"","first_seen":"2026-03-05T00:59:10.971015Z","last_seen":"2026-03-14T23:34:43.752496Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/90-a9cbbcc012808602.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"531605525e3ca2f4c88aaa3f3514e62b","sha1":"db3046cce627147d287d0ad1c2b4b5e8921c6db4","sha256":"353810e259a19ce8874e2d2ab0d16a67039e5c555882db245f8928720ae91647","sha512":"3f708901a41be16ad8aab0a295e73111ad5f349d029d2c3b43d514050cb32165639c998c8dc50d5a6ef485842ff85525d012f37b493e05c95194d62f1c60b76e","ssdeep":"6144:+dgrXrFNmg1bUHw67VGRMSrG6nwSrell2UF:CgrXr7mg1Iz0RxnwSrelllF","tlshash":"23345ca971053774afe363e1e61a1203663b649935cc8825716accf91dad8c8037ffb6","size":236725,"data":"","first_seen":"2026-03-05T00:59:11.006198Z","last_seen":"2026-03-14T23:34:43.725927Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/622-8c0d39a260bdb8cc.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"9db1f253cc0ee418066298b124d341e1","sha1":"a09b2ba172684997d32466bd0c904e682a7c6727","sha256":"2a72934174a82eb4f79a51e8f40fa46a8fefce68232409985d7ef59c3ef7c679","sha512":"9634723ad68ddc815f8133df544fbd717521f2e0cf6268e9e88e512a696de517cd26c93c745d9c6ddcd255f2115f8f6584b2ed8c8799ffa525bff89277a6ef59","ssdeep":"1536:YVOn3+SpypZEZKxlpypuVzepFp3pLp3p9pmpcpgpyp2ptpppIpypxFzY/InI54GR:Y5Lxh4An7VOl","tlshash":"cf93a5eb3358607c138b2217c93b2a51b33f259e353f4a28452ec6f8995addcd357928","size":91814,"data":"","first_seen":"2026-03-05T00:59:10.960957Z","last_seen":"2026-03-14T23:34:43.760362Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/238-e0b72b2f1279c3cf.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"dcb054561c0ba8d4d3556c04b09bf75b","sha1":"a6614cdb15174ed4d54ecb6df52fb3c09bd923d1","sha256":"3cf271f8957f70ad3a3b31dd4b4e613084234af5561dd56d2efc5d8955a0a248","sha512":"91116adbbeb56ff14190493eb09f3eb21259571f662dd5b73598e601246e8d2f5f53749ac91a16fde0ec8792e0cf69e3024b86bf1a92d015ef3d290d1bc506e0","ssdeep":"768:4AacE12zod3eUS843+ranga0pJCW/nZqUGzSzSCCpWctjfuLV1g:5acE12CM8saanxOJCW/nZVysctSW","tlshash":"a9232c737a022154e6df06ec80b3248c71bd1655ba870a6df43cb978976a7d432e3bc6","size":48973,"data":"","first_seen":"2026-03-05T00:59:10.956965Z","last_seen":"2026-03-14T23:34:43.756909Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":true,"md5":"ef99fbfcec940db779a19b4f4f2b8173","sha1":"9bd39b0683bb29aa72971c1b5fcf079b96b1345f","sha256":"27d0f9af027ef0ba607a652682b9506f3c8542b7ec77fb2fee74c3f5515d00aa","sha512":"70069d6196be3c6646364e35f8b00f1ff9ae163dcec7e97605cde91154926640b2465ea54c9daaa4e67886af3bee21d2fea0f627a3572e46769577434b20bd96","ssdeep":"96:gkVq6d3YdABMN1Jou/So8+VIARptBr2cx2i429F2izytew2x:HwO3YuBMHuO8AjtBNVl1zEQx","tlshash":"bfb1132975f108b00537736ad70fad4830b7145b6904ef24396e074a3fd1a1c2ae9deb","size":5504,"data":"","first_seen":"2026-03-05T00:59:11.022708Z","last_seen":"2026-03-14T23:34:43.776948Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/564-940ecc6986c2986c.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"ca864b2c6af7f9b58d46f0c34bb17e47","sha1":"5c1a2fda538233fec12ae24009bb44e15ed9618a","sha256":"a74b91729a0b868c0588ca8428c648ca6c64fd86458d7cb2435819ae77754915","sha512":"b2937071e2659249f9e36a567b72e0564a2ede86845202f860c957ed4c7c369e092f1f0eecfe2e79e24d868118292b96d84d2793430839a13aa5cc84a49c24c7","ssdeep":"3072:noZLvNr0Uw+LVO2Pzai/oOJ69y94GG2g/mT4Zo+2BwU2PkODlKEK0ea3LsSr8JG0:nRy94Gxg6+Ywvhdp3L7tUvJh9dyz9cg0","tlshash":"37743bc9b286b066439750f5403f200af33a7848b88d4854f5bad8d67cb899e527bf7d","size":344340,"data":"","first_seen":"2026-03-05T00:59:10.938241Z","last_seen":"2026-03-14T23:34:43.755969Z","times_seen":6,"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-03-05","alert":"Hunting_JS_WebAssembly","trigger":"musicuae.top/files/564-940ecc6986c2986c.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/bb639da9-65ec517e1525cc6d.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"ccb2c2e477658a11eb431578cbeb819d","sha1":"66b5ee3887464fb7aa463d0be00bee87c431abd1","sha256":"03dbc74c96911ea932b40d74b25b38b12c64e38481a489d026a1aabc31896a57","sha512":"e766cbfe11c8076a794141a905c206d139539460be389ae444315856800692b6674271c3b81a1ef2ad375858c2387b31378b8c0d58a6cecfb429d18faf37a800","ssdeep":"192:NepoZjZNOQeGH/YpydyOIfb8NDfAA2fb8NDfAAZC1GHMhNhbGHEMz6ydyOjFR0et:NepOifbATAA2fbATAAAsG0mj6","tlshash":"6a1267b06b5a484dd32599ba329539c902f1fadcf4c54aae506ec470b2d8c30276b77f","size":9107,"data":"","first_seen":"2026-03-05T00:59:10.96513Z","last_seen":"2026-03-14T23:34:43.751867Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/_ssgManifest.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"b6652df95db52feb4daf4eca35380933","sha1":"65451d110137761b318c82d9071c042db80c4036","sha256":"6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e","sha512":"3390c5663ef9081885df8cdbc719f6c2f1597a4e25168529598097e9472608a4a62ec7f7e0bc400d22aac81bf6ea926532886e4dc6e4e272d3b588490a090473","ssdeep":"","tlshash":"98a001e0943cdc60aa63dd1c136413128fa05122651d28938afd3044c0301510300d90","size":77,"data":"","first_seen":"2023-03-07T01:03:02Z","last_seen":"2026-06-06T12:15:26.662962Z","times_seen":232032,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/_app-f291bb09223036f5.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"65a5876acc622c6ec72f121ca9bbfefd","sha1":"dcc117ec4322be9a0373c65f6848a8b6bc7fbf17","sha256":"142944f456458fbaac6c063c13fc317a134b4c27c182a9faf193593027f5e2eb","sha512":"229c86d2e121183c81284789cb579136983c2adbc2f0bac0bdba5af328bd38bc457df531bc1e18cef6d676769b742c3539f1f01e905603bcfb0ceace3492a61f","ssdeep":"3072:iaBzjzSd3X5gHeDPEWUjWsQb6jL4Pf+QOVhW/i4f7szUBnUOJvQKhLVmvv8:3Q5gHQPEWUjWBBGhWc8","tlshash":"8ed309da73a0b066439741a6943b0403f338a969054d092cb364ecff797e589b2faf75","size":135704,"data":"","first_seen":"2026-03-05T00:59:10.995485Z","last_seen":"2026-03-14T23:34:43.741272Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/8bdd1454-6e6c82a9995e1063.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"2344856f97d7306b78b8583c6a60a470","sha1":"30c9b6a9324286791e4ee851a164a18bd885a576","sha256":"8398f9a2b902452a1f6ea0755f4381f460a4b39b005eee18d894708b60826ba2","sha512":"7e00ccbc5f3dacd0fc7ee1cd56cab1aa4c141db581a64d865bbce940190e969445c0ad5c2eccf394da048317b200fd7b65d2d2c1893a13073a0cc18bde351ccb","ssdeep":"3072:xqnl20BPaeHFG5LoObqBMUqG2iOHeI5wN/jnYQ7:xqnl25+FX","tlshash":"4ed30c8d77a5f0214393a2f6403f210bf33b685a980d4068b265d9ea7cb954d937bf39","size":137144,"data":"","first_seen":"2026-03-05T00:59:10.966209Z","last_seen":"2026-03-14T23:34:43.759382Z","times_seen":6,"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-03-05","alert":"Hunting_JS_WebAssembly","trigger":"musicuae.top/files/8bdd1454-6e6c82a9995e1063.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/281c3f4d-9bf2d7dfc806a843.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"cb14eda60b6e6257f7ec05e8293c4c88","sha1":"11e0182fd7ffd01d21809cb03e552f868de17fec","sha256":"3b7cd5a513591ae252d5f3423160142cced30e1a3c9093449be25dbf685d4521","sha512":"b5aad0f50d35ebbb19c513afe6375837deead635d28dc06ae84f97c7fb31326b5235d6d1d3fe6e8017468b11318d19219855c9102855f61a48587d78202278a8","ssdeep":"1536:IMLu0T/QvwpFpJuotyy/14e0VbkneqDGDN:LBT4MJuwnetN","tlshash":"1433c6ddb282f462024b65a4543f060bf337ae95740e096cf229d5ca7d3c989907bf7a","size":52087,"data":"","first_seen":"2025-10-30T12:14:04.302159Z","last_seen":"2026-03-14T23:34:43.765936Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/premium.voyager-6a18f20b8be988a2.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"introduction_type":"scriptElement","is_inline":false,"md5":"ff7fe448ebe27c0311b7c18692adb8ab","sha1":"0bf7a68426caf3baa7e879facb372791f5260e15","sha256":"dafd7be52045ee4a165f4ad093071b320f198a324751d120a3cfc0d322bed642","sha512":"648e47d2a711860a29b6dbf90c4f2ba24972d40e7c326705fbe9d023f72e7bdca8b39bac5badcf1c217ee8b998e7f66cd9752d67a5d47667382a6c17928c9a5b","ssdeep":"3072:C+UNTXCmZer+OpOiBC3au4ItZXaktgDhz6ptzJg3i1:C+UNTXQ+8Aau4It9bgd6j5","tlshash":"a034085eab20f434b19f8ba7a6ae387c7cb41bd0ea446d31b07f5b6705c2f50d219921","size":253329,"data":"","first_seen":"2026-03-05T00:59:10.997372Z","last_seen":"2026-03-14T23:34:43.728584Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"musicuae.top/files/564-940ecc6986c2986c.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.614Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/564-940ecc6986c2986c.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:30 GMT\r\nETag: \"54114-64c2c45961680-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":344340,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"ca864b2c6af7f9b58d46f0c34bb17e47","sha1":"5c1a2fda538233fec12ae24009bb44e15ed9618a","sha256":"a74b91729a0b868c0588ca8428c648ca6c64fd86458d7cb2435819ae77754915","sha512":"b2937071e2659249f9e36a567b72e0564a2ede86845202f860c957ed4c7c369e092f1f0eecfe2e79e24d868118292b96d84d2793430839a13aa5cc84a49c24c7","ssdeep":"3072:noZLvNr0Uw+LVO2Pzai/oOJ69y94GG2g/mT4Zo+2BwU2PkODlKEK0ea3LsSr8JG0:nRy94Gxg6+Ywvhdp3L7tUvJh9dyz9cg0","tlshash":"37743bc9b286b066439750f5403f200af33a7848b88d4854f5bad8d67cb899e527bf7d","first_seen":"2026-03-05T00:59:10.938241Z","last_seen":"2026-03-14T23:34:43.755969Z","times_seen":6,"resource_available":true,"data":null}},"time_used":360,"timings":{"blocked":99,"dns":0,"connect":0,"send":0,"wait":234,"receive":27,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-03-05","alert":"Hunting_JS_WebAssembly","trigger":"musicuae.top/files/564-940ecc6986c2986c.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"encore.scdn.co/fonts/SpotifyMixUI-Regular-31709b393e8db855577d71cc850435e7.woff2","fqdn":"encore.scdn.co","domain":"scdn.co","tld":"co"},"ip":{"addr":"23.36.77.105","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.624Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.scdn.co","organization":"Spotify AB"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 27 Jun 2025 00:00:00 GMT","end":"Tue, 28 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:25:66:57:1B:87:1F:49:8D:C6:86:60:1B:C3:B4:89:84:72:4A:92","sha256":"FB:12:4E:1B:42:51:F1:34:85:E4:29:67:F9:E7:1B:F7:49:7F:01:C8:5A:8F:0D:71:71:38:3C:5B:27:97:49:88"}}},"request":{"raw":"GET /fonts/SpotifyMixUI-Regular-31709b393e8db855577d71cc850435e7.woff2 HTTP/1.1\r\nHost: encore.scdn.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://musicuae.top/\r\nOrigin: https://musicuae.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: font/woff2\r\nlast-modified: Fri, 24 Oct 2025 08:37:20 GMT\r\netag: \"ea0e298d78c1c44fa60c473faa74e4d5\"\r\ncontent-encoding: gzip\r\nx-amz-checksum-crc32c: y+wPCQ==\r\naccept-ranges: bytes\r\ncontent-length: 46306\r\nexpires: Thu, 05 Mar 2026 00:58:39 GMT\r\ndate: Thu, 05 Mar 2026 00:58:39 GMT\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=15768000\r\naccess-control-max-age: 86400\r\naccess-control-allow-headers: range\r\naccess-control-allow-methods: GET\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":46296,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 46296, version 1.0","md5":"31709b393e8db855577d71cc850435e7","sha1":"20564cc7791ebf1f7e8f88e9ff81119ce800409c","sha256":"976e596a35670f07adf6ccfde17d8ddb0291e74b12a9012544874f111fd0e97e","sha512":"4a7c4a44d8444ca09e0f917fa723f24b26fee582747935c60420f1925548668db5856e0a5dadb4e37b522d5956fce1bab84bb76716be8d3fea336bf16f17d418","ssdeep":"768:ZtYvEoOf7/PoFVExl6aX39HBwZLu49VQKAlt4MckdCdSRNuAD9csHkrJJq4VMfxp:ZmvHOzHMaj35qVV9xA3bceESRNuAD9ck","tlshash":"4323f19cfab063dbc46280f3fbe8393ace076114c4a1c104e59f2ab751547776ea56a2","first_seen":"2025-11-28T16:29:15.947139Z","last_seen":"2026-05-25T22:53:16.928111Z","times_seen":11,"resource_available":false,"data":null}},"time_used":278,"timings":{"blocked":-1,"dns":222,"connect":3,"send":0,"wait":7,"receive":1,"ssl":37},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wwwmarketing.scdn.co/video/voyager/SPOTIFY_WEB_HERO_9X16_Compressed.webm","fqdn":"wwwmarketing.scdn.co","domain":"scdn.co","tld":"co"},"ip":{"addr":"23.36.77.107","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.907Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.scdn.co","organization":"Spotify AB"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 27 Jun 2025 00:00:00 GMT","end":"Tue, 28 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:25:66:57:1B:87:1F:49:8D:C6:86:60:1B:C3:B4:89:84:72:4A:92","sha256":"FB:12:4E:1B:42:51:F1:34:85:E4:29:67:F9:E7:1B:F7:49:7F:01:C8:5A:8F:0D:71:71:38:3C:5B:27:97:49:88"}}},"request":{"raw":"GET /video/voyager/SPOTIFY_WEB_HERO_9X16_Compressed.webm HTTP/1.1\r\nHost: wwwmarketing.scdn.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\ncontent-type: video/webm\r\nlast-modified: Wed, 13 Aug 2025 17:49:45 GMT\r\netag: \"6e43217ab4d7c57364b9eac66e79a75a\"\r\nx-amz-checksum-crc32c: G6Rhag==\r\naccept-ranges: bytes\r\nexpires: Thu, 05 Mar 2026 00:58:39 GMT\r\ndate: Thu, 05 Mar 2026 00:58:39 GMT\r\ncontent-range: bytes 0-4315243/4315244\r\ncontent-length: 4315244\r\ncache-control: public, max-age=86400\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=15768000\r\naccess-control-max-age: 86400\r\naccess-control-allow-headers: range\r\naccess-control-allow-methods: GET\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4292608,"size_decoded":0,"mime_type":"video/webm","magic":"WebM","md5":"53939a15411c4bcfaffc2d2c405fbeca","sha1":"3f47ecb2414c5d6cb51b1dbab972624f06ae6ba9","sha256":"e9852d6124c0bd28f453a8ef96d43783d4c5425df9ab663f2625a5263528d650","sha512":"da84e0ad2797db3e5246e4a8189a747409ed7eb123f8789d6b6c20dbb59901f8a78c2b8d3ddab6d755499230982eb6af11900fe02811f531ebfe7ffed4b747a5","ssdeep":"24576:Qgcf659sV76pxxdtUSwbu1d6/c+5kOjB1YlkU:QLfg9sAxdtUSw6Xfe93YlkU","tlshash":"0625336ca1a19fcef3c78afa684724ba36b4044f474811e263961539cd88bdafd11d0b","first_seen":"2026-03-05T00:59:10.946822Z","last_seen":"2026-03-05T08:27:22.756878Z","times_seen":3,"resource_available":false,"data":null}},"time_used":451,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":443,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wwwmarketing.scdn.co/video/voyager/SPOTIFY_WEB_HERO_16x9_compressed.webm","fqdn":"wwwmarketing.scdn.co","domain":"scdn.co","tld":"co"},"ip":{"addr":"23.36.77.107","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:40.330Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.scdn.co","organization":"Spotify AB"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 27 Jun 2025 00:00:00 GMT","end":"Tue, 28 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:25:66:57:1B:87:1F:49:8D:C6:86:60:1B:C3:B4:89:84:72:4A:92","sha256":"FB:12:4E:1B:42:51:F1:34:85:E4:29:67:F9:E7:1B:F7:49:7F:01:C8:5A:8F:0D:71:71:38:3C:5B:27:97:49:88"}}},"request":{"raw":"GET /video/voyager/SPOTIFY_WEB_HERO_16x9_compressed.webm HTTP/1.1\r\nHost: wwwmarketing.scdn.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\ncontent-type: video/webm\r\nlast-modified: Wed, 13 Aug 2025 17:49:09 GMT\r\netag: \"b3d665b704a15fb939c3eccd8f3e90a9\"\r\nx-amz-checksum-crc32c: bO8tKg==\r\naccept-ranges: bytes\r\nexpires: Thu, 05 Mar 2026 00:58:40 GMT\r\ndate: Thu, 05 Mar 2026 00:58:40 GMT\r\ncontent-range: bytes 0-5573504/5573505\r\ncontent-length: 5573505\r\ncache-control: public, max-age=86400\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=15768000\r\naccess-control-max-age: 86400\r\naccess-control-allow-headers: range\r\naccess-control-allow-methods: GET\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5573505,"size_decoded":0,"mime_type":"video/webm","magic":"WebM","md5":"17051514b8f97809989f60e7997c2224","sha1":"0e3fe6193e84230c3910bd9df090f77d0317f7e1","sha256":"7e485876423b80d0d423f88265d1823f13e4261f20fe986dcfb4fd3975f6ab6e","sha512":"2aaddc684e0430b858d461b020003daa9314be9a49f58bd5008d21dea332ed850aae76068dfec9a032d5903e75695c2c8b4e2fb9f6fac16022aa69df9d863118","ssdeep":"24576:S2wlSNE+/jpprQ+0gnanuawCGthtIMzDTas:cIEkjpprQpgnqwCGtfT","tlshash":"07253302551b7f66dca788b1e63f2489b6275a1509838af34e8f20fafd1f7065817f18","first_seen":"2026-03-05T00:59:10.949176Z","last_seen":"2026-03-14T23:34:43.766423Z","times_seen":6,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":247,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"encore.scdn.co/fonts/SpotifyMixUI-Bold-86eda275b94aa01544710872b286a30a.woff2","fqdn":"encore.scdn.co","domain":"scdn.co","tld":"co"},"ip":{"addr":"23.36.77.105","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.627Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.scdn.co","organization":"Spotify AB"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 27 Jun 2025 00:00:00 GMT","end":"Tue, 28 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:25:66:57:1B:87:1F:49:8D:C6:86:60:1B:C3:B4:89:84:72:4A:92","sha256":"FB:12:4E:1B:42:51:F1:34:85:E4:29:67:F9:E7:1B:F7:49:7F:01:C8:5A:8F:0D:71:71:38:3C:5B:27:97:49:88"}}},"request":{"raw":"GET /fonts/SpotifyMixUI-Bold-86eda275b94aa01544710872b286a30a.woff2 HTTP/1.1\r\nHost: encore.scdn.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://musicuae.top/\r\nOrigin: https://musicuae.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: font/woff2\r\nlast-modified: Fri, 24 Oct 2025 08:37:21 GMT\r\netag: \"d8dc6c3a787ba12557baa8b778017a27\"\r\ncontent-encoding: gzip\r\nx-amz-checksum-crc32c: vz/zqw==\r\naccept-ranges: bytes\r\ncontent-length: 50214\r\nexpires: Thu, 05 Mar 2026 00:58:39 GMT\r\ndate: Thu, 05 Mar 2026 00:58:39 GMT\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=15768000\r\naccess-control-max-age: 86400\r\naccess-control-allow-headers: range\r\naccess-control-allow-methods: GET\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":50304,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 50304, version 1.0","md5":"86eda275b94aa01544710872b286a30a","sha1":"9be23650838114fdcbc65727aad5147f8fbe4f96","sha256":"7517b1586491be55a313586e878c5140d4040862722568bb1b5c1e392c2918f5","sha512":"c029b8eece29b6ebe0af311840dc0e31a265f0cabd2ac0bc6a9bb8de96f1c443e7d51394f41fa00f314c3cabd9e0ec29cd8e0c812b682bb28e6a9e708bf77293","ssdeep":"768:D9joy/FSeYxbMYmXkHTtE06VrS22m+WScE85HLF6S9rU//s1/HTcmRspiqLM:Bjo7bzG06VrS2cS5rFF9FPKUqw","tlshash":"6d3302874f83517cd596a37eaa27d4f374a40e399449331526e3901801ebf2b64d3bde","first_seen":"2025-11-28T16:29:15.936492Z","last_seen":"2026-05-25T22:53:16.921178Z","times_seen":11,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":-1,"dns":212,"connect":3,"send":0,"wait":7,"receive":1,"ssl":42},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/281c3f4d-9bf2d7dfc806a843.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.609Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/281c3f4d-9bf2d7dfc806a843.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 19910\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:23 GMT\r\nETag: \"cb77-64c2c452b46c0-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":52087,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (52087), with no line terminators","md5":"cb14eda60b6e6257f7ec05e8293c4c88","sha1":"11e0182fd7ffd01d21809cb03e552f868de17fec","sha256":"3b7cd5a513591ae252d5f3423160142cced30e1a3c9093449be25dbf685d4521","sha512":"b5aad0f50d35ebbb19c513afe6375837deead635d28dc06ae84f97c7fb31326b5235d6d1d3fe6e8017468b11318d19219855c9102855f61a48587d78202278a8","ssdeep":"1536:IMLu0T/QvwpFpJuotyy/14e0VbkneqDGDN:LBT4MJuwnetN","tlshash":"1433c6ddb282f462024b65a4543f060bf337ae95740e096cf229d5ca7d3c989907bf7a","first_seen":"2025-10-30T12:14:04.302159Z","last_seen":"2026-03-14T23:34:43.765936Z","times_seen":8,"resource_available":true,"data":null}},"time_used":119,"timings":{"blocked":59,"dns":0,"connect":0,"send":0,"wait":59,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/3-04fa6b20fef9c81b.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/3-04fa6b20fef9c81b.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 10339\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:37 GMT\r\nETag: \"8201-64c2c4600e640-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":33281,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (20703)","md5":"4ebc795cac71489223ccb00c043c3a84","sha1":"05b7a940956b03e72583d2253b440bfc975f0469","sha256":"31f692c7039c93491b175342ef9ea304424090e7e49860874c2c55ef62488799","sha512":"3d4ba17f27245cd148ffd56f82de4c9997cfb7fdde7d37cbe99e6d356faa638aab84b4cb65a43b92388eb02eb57c9634dfd8ec284a4a86821154549de6018ecd","ssdeep":"384:0O+kUiD8TuTTEUq6vPcJ3vYc+FviwzWqWI/6fW4/VayUcAT2TpTgTbw0iVlRw2U/:QiWITrO8vpWzISf/wA5+MRwppZ","tlshash":"f5e2d8b572516875b2df0bedc176314c92ae1344c9c60e3cb118b978d3baad931e2bc6","first_seen":"2026-03-05T00:59:10.95535Z","last_seen":"2026-03-14T23:34:43.727438Z","times_seen":6,"resource_available":true,"data":null}},"time_used":208,"timings":{"blocked":165,"dns":0,"connect":0,"send":0,"wait":43,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/238-e0b72b2f1279c3cf.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.618Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/238-e0b72b2f1279c3cf.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 14807\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:39 GMT\r\nETag: \"bf4d-64c2c461f6ac0-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48973,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (20964)","md5":"dcb054561c0ba8d4d3556c04b09bf75b","sha1":"a6614cdb15174ed4d54ecb6df52fb3c09bd923d1","sha256":"3cf271f8957f70ad3a3b31dd4b4e613084234af5561dd56d2efc5d8955a0a248","sha512":"91116adbbeb56ff14190493eb09f3eb21259571f662dd5b73598e601246e8d2f5f53749ac91a16fde0ec8792e0cf69e3024b86bf1a92d015ef3d290d1bc506e0","ssdeep":"768:4AacE12zod3eUS843+ranga0pJCW/nZqUGzSzSCCpWctjfuLV1g:5acE12CM8saanxOJCW/nZVysctSW","tlshash":"a9232c737a022154e6df06ec80b3248c71bd1655ba870a6df43cb978976a7d432e3bc6","first_seen":"2026-03-05T00:59:10.956965Z","last_seen":"2026-03-14T23:34:43.756909Z","times_seen":6,"resource_available":true,"data":null}},"time_used":236,"timings":{"blocked":175,"dns":0,"connect":0,"send":0,"wait":60,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/webpack-80f7eff0f8777b94.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.602Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/webpack-80f7eff0f8777b94.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 1279\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:11 GMT\r\nETag: \"ad1-64c2c44742bc0-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2769,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (2769), with no line terminators","md5":"5efdbe57631077f31f92d20f28fa06e5","sha1":"900a08f47f6d6b83f27a6c7129b252ef5919ae78","sha256":"518d834a488535a0cce042ca6800fe2dcb806556bbbeb6e486d129b8c3f521f5","sha512":"06c5db0cc21ea5185284abc4174e90dabebb107390863789aff5742d0618ef4019f614a62c01b5c6f4b2a9a9dc490eef704c922bb7007a257d69f769b4663f15","ssdeep":"","tlshash":"235130d01ab09462562a17dc893f9403f329443b439cf9e0f765ceb935b059b4a64fe7","first_seen":"2025-10-30T12:14:04.255946Z","last_seen":"2026-03-14T23:34:43.759874Z","times_seen":8,"resource_available":true,"data":null}},"time_used":123,"timings":{"blocked":31,"dns":0,"connect":25,"send":0,"wait":32,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/622-8c0d39a260bdb8cc.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.616Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/622-8c0d39a260bdb8cc.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 19945\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:36 GMT\r\nETag: \"166a6-64c2c45f1a400-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":91814,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"9db1f253cc0ee418066298b124d341e1","sha1":"a09b2ba172684997d32466bd0c904e682a7c6727","sha256":"2a72934174a82eb4f79a51e8f40fa46a8fefce68232409985d7ef59c3ef7c679","sha512":"9634723ad68ddc815f8133df544fbd717521f2e0cf6268e9e88e512a696de517cd26c93c745d9c6ddcd255f2115f8f6584b2ed8c8799ffa525bff89277a6ef59","ssdeep":"1536:YVOn3+SpypZEZKxlpypuVzepFp3pLp3p9pmpcpgpyp2ptpppIpypxFzY/InI54GR:Y5Lxh4An7VOl","tlshash":"cf93a5eb3358607c138b2217c93b2a51b33f259e353f4a28452ec6f8995addcd357928","first_seen":"2026-03-05T00:59:10.960957Z","last_seen":"2026-03-14T23:34:43.760362Z","times_seen":6,"resource_available":true,"data":null}},"time_used":177,"timings":{"blocked":122,"dns":0,"connect":0,"send":0,"wait":54,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"encore.scdn.co/fonts/SpotifyMixUITitle-Bold-7ebeeab66bfa77201596041f640f0a50.woff2","fqdn":"encore.scdn.co","domain":"scdn.co","tld":"co"},"ip":{"addr":"23.36.77.105","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.809Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.scdn.co","organization":"Spotify AB"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 27 Jun 2025 00:00:00 GMT","end":"Tue, 28 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:25:66:57:1B:87:1F:49:8D:C6:86:60:1B:C3:B4:89:84:72:4A:92","sha256":"FB:12:4E:1B:42:51:F1:34:85:E4:29:67:F9:E7:1B:F7:49:7F:01:C8:5A:8F:0D:71:71:38:3C:5B:27:97:49:88"}}},"request":{"raw":"GET /fonts/SpotifyMixUITitle-Bold-7ebeeab66bfa77201596041f640f0a50.woff2 HTTP/1.1\r\nHost: encore.scdn.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://musicuae.top\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: font/woff2\r\nlast-modified: Fri, 24 Oct 2025 08:37:19 GMT\r\netag: \"8cec6870f3ebe214f2dcc0f646b72d5b\"\r\nx-amz-checksum-crc32c: zoM7nw==\r\nvary: Accept-Encoding\r\nexpires: Thu, 05 Mar 2026 00:58:39 GMT\r\ndate: Thu, 05 Mar 2026 00:58:39 GMT\r\ncache-control: public, max-age=31536000\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=15768000\r\naccess-control-max-age: 86400\r\naccess-control-allow-headers: range\r\naccess-control-allow-methods: GET\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":59276,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 59276, version 1.0","md5":"7ebeeab66bfa77201596041f640f0a50","sha1":"ecf7355126793a91af6ea3456eef18404f476f11","sha256":"72cb44c27d002c0b9938cfbb113953580ec4d98845c13b6639d83b59a6682250","sha512":"8508863f74d913d4c524f16d1c8294641fe80d9247fe40a89277bff7e00f5dbd9330d00bc66b69a4e7ca7ba9b314e02735461abd983b5ed59e0cb461ae42eaf3","ssdeep":"1536:qbcDApiKAzCJG4jyvxKNm97YdF0NzkQs/I1fKKh/:o3iCHyv97DNzkQs/I1fKy","tlshash":"bb43028effec93dae09f15b026b5b03f1925de6dc08af21549292f1831e01a7be74615","first_seen":"2025-11-28T16:29:15.955949Z","last_seen":"2026-05-25T22:53:16.925826Z","times_seen":11,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":60,"dns":5,"connect":5,"send":0,"wait":8,"receive":0,"ssl":26},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wwwmarketing.scdn.co/img/apple-touch-icon-180x180.png","fqdn":"wwwmarketing.scdn.co","domain":"scdn.co","tld":"co"},"ip":{"addr":"23.36.77.107","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:40.446Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.scdn.co","organization":"Spotify AB"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 27 Jun 2025 00:00:00 GMT","end":"Tue, 28 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:25:66:57:1B:87:1F:49:8D:C6:86:60:1B:C3:B4:89:84:72:4A:92","sha256":"FB:12:4E:1B:42:51:F1:34:85:E4:29:67:F9:E7:1B:F7:49:7F:01:C8:5A:8F:0D:71:71:38:3C:5B:27:97:49:88"}}},"request":{"raw":"GET /img/apple-touch-icon-180x180.png HTTP/1.1\r\nHost: wwwmarketing.scdn.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 23 Nov 2023 09:19:33 GMT\r\netag: \"56caad42293d08b59325e19f0d7c7ed4\"\r\nx-amz-meta-goog-reserved-file-mtime: 1700729942\r\ncontent-type: image/png\r\nx-amz-checksum-crc32c: sxrKlw==\r\naccept-ranges: bytes\r\ncontent-length: 2747\r\nexpires: Thu, 05 Mar 2026 00:58:40 GMT\r\ndate: Thu, 05 Mar 2026 00:58:40 GMT\r\ncache-control: public, max-age=86400\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=15768000\r\naccess-control-max-age: 86400\r\naccess-control-allow-headers: range\r\naccess-control-allow-methods: GET\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":2747,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"56caad42293d08b59325e19f0d7c7ed4","sha1":"91c3c8f9a23be5ac9398e2205383653b14e99c66","sha256":"fb720244c29a37c94ce3f3e38e6d26671b70f67d412f1bc780c631c8ba3186cb","sha512":"be51a7c7068a3443586df4c4ccb6b60932c21b0291927047de884412996524f24e16bdb798997949a53e6d4ab595fbc9b13c479e13bfaceacae14f783d90f959","ssdeep":"","tlshash":"93512be385a8ed73e6a6c128c3bc52101d76c20aa4d481f69cd71597e867c4683e461f","first_seen":"2023-07-01T06:13:13Z","last_seen":"2026-03-14T23:34:43.753037Z","times_seen":2535,"resource_available":false,"data":null}},"time_used":2,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/bb639da9-65ec517e1525cc6d.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.607Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/bb639da9-65ec517e1525cc6d.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 1468\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:22 GMT\r\nETag: \"2393-64c2c451c0480-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9107,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (9107), with no line terminators","md5":"ccb2c2e477658a11eb431578cbeb819d","sha1":"66b5ee3887464fb7aa463d0be00bee87c431abd1","sha256":"03dbc74c96911ea932b40d74b25b38b12c64e38481a489d026a1aabc31896a57","sha512":"e766cbfe11c8076a794141a905c206d139539460be389ae444315856800692b6674271c3b81a1ef2ad375858c2387b31378b8c0d58a6cecfb429d18faf37a800","ssdeep":"192:NepoZjZNOQeGH/YpydyOIfb8NDfAA2fb8NDfAAZC1GHMhNhbGHEMz6ydyOjFR0et:NepOifbATAA2fbATAAAsG0mj6","tlshash":"6a1267b06b5a484dd32599ba329539c902f1fadcf4c54aae506ec470b2d8c30276b77f","first_seen":"2026-03-05T00:59:10.96513Z","last_seen":"2026-03-14T23:34:43.751867Z","times_seen":6,"resource_available":true,"data":null}},"time_used":105,"timings":{"blocked":58,"dns":0,"connect":0,"send":0,"wait":47,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/8bdd1454-6e6c82a9995e1063.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.611Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/8bdd1454-6e6c82a9995e1063.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 39900\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:25 GMT\r\nETag: \"217b8-64c2c4549cb40-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":137144,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"2344856f97d7306b78b8583c6a60a470","sha1":"30c9b6a9324286791e4ee851a164a18bd885a576","sha256":"8398f9a2b902452a1f6ea0755f4381f460a4b39b005eee18d894708b60826ba2","sha512":"7e00ccbc5f3dacd0fc7ee1cd56cab1aa4c141db581a64d865bbce940190e969445c0ad5c2eccf394da048317b200fd7b65d2d2c1893a13073a0cc18bde351ccb","ssdeep":"3072:xqnl20BPaeHFG5LoObqBMUqG2iOHeI5wN/jnYQ7:xqnl25+FX","tlshash":"4ed30c8d77a5f0214393a2f6403f210bf33b685a980d4068b265d9ea7cb954d937bf39","first_seen":"2026-03-05T00:59:10.966209Z","last_seen":"2026-03-14T23:34:43.759382Z","times_seen":6,"resource_available":true,"data":null}},"time_used":192,"timings":{"blocked":101,"dns":0,"connect":0,"send":0,"wait":90,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-03-05","alert":"Hunting_JS_WebAssembly","trigger":"musicuae.top/files/8bdd1454-6e6c82a9995e1063.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/7a23381914481b14.css","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.592Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/7a23381914481b14.css HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/css\r\nLast-Modified: Wed, 04 Mar 2026 05:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69a7c5ea-77d3\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":30675,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (30675), with no line terminators","md5":"7c6d0d866cd9f7b3915bffb4b947a18a","sha1":"e1c53bb0462046a6a87f35d589f3c25ab8197954","sha256":"2b92bd1ec9e03c7661e70b802a5b5a0931ca2582247366dbede24c81fffb02c9","sha512":"0451a7d4c4bb7083420d99c331842fc8ab9449b2475dfad2bc252b5ab6e7b16ce7c53055f038a1f915686f977f0fd6b8429cbf7eea6f19a5da8d4c13fc47f983","ssdeep":"384:ThVXWWnV0BncPWnDB0MsPJCJdFD1A1u1a1y1Y1o151c1r1Z1l101l0J0d0BdHoww:ThVXWWnW9qWWPJydFC9OT3xbb","tlshash":"1dd2c748b620112cfe93853df5729285e3eddcc0bf9319dcabe1621995cee69431be18","first_seen":"2025-10-30T12:14:04.286966Z","last_seen":"2026-05-25T22:53:16.917561Z","times_seen":11,"resource_available":false,"data":null}},"time_used":99,"timings":{"blocked":27,"dns":1,"connect":19,"send":0,"wait":22,"receive":1,"ssl":26},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/_ssgManifest.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.622Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/_ssgManifest.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 61\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:43 GMT\r\nETag: \"4d-64c2c465c73c0-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":77,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with no line terminators","md5":"b6652df95db52feb4daf4eca35380933","sha1":"65451d110137761b318c82d9071c042db80c4036","sha256":"6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e","sha512":"3390c5663ef9081885df8cdbc719f6c2f1597a4e25168529598097e9472608a4a62ec7f7e0bc400d22aac81bf6ea926532886e4dc6e4e272d3b588490a090473","ssdeep":"","tlshash":"98a001e0943cdc60aa63dd1c136413128fa05122651d28938afd3044c0301510300d90","first_seen":"2023-03-07T01:03:02Z","last_seen":"2026-06-06T12:15:26.662962Z","times_seen":232032,"resource_available":true,"data":null}},"time_used":278,"timings":{"blocked":210,"dns":0,"connect":0,"send":0,"wait":68,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/_buildManifest.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.621Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/_buildManifest.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 864\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:42 GMT\r\nETag: \"944-64c2c464d3180-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2372,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (2372), with no line terminators","md5":"914631466ce34144714ae28f8b3efecf","sha1":"e80ab8901f116b27c5edb197cdfe7889a19d7c99","sha256":"f0b48906e027abd2e99a1f4fa3df7f33e3d260915218fcbc840a8e6a026c9d6d","sha512":"68f0bdd80c0974d5e994262df40f55e6b60e7d97ebbf5390f1f4f7599a47f358feace6e9326853a38bb0ccddb821617c70278e4ecf2c06d242d9d519a511b598","ssdeep":"","tlshash":"c9417c730803ff459df2dc85b46f97b3eec6b5b312b04395c2dc0a6905a30928b6ca19","first_seen":"2026-03-05T00:59:10.971015Z","last_seen":"2026-03-14T23:34:43.752496Z","times_seen":6,"resource_available":true,"data":null}},"time_used":246,"timings":{"blocked":204,"dns":0,"connect":0,"send":0,"wait":42,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"encore.scdn.co/fonts/SpotifyMixUITitleVariable-b22c350cb4623a51063b334f7610beac.woff2","fqdn":"encore.scdn.co","domain":"scdn.co","tld":"co"},"ip":{"addr":"23.36.77.105","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.625Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.scdn.co","organization":"Spotify AB"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 27 Jun 2025 00:00:00 GMT","end":"Tue, 28 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:25:66:57:1B:87:1F:49:8D:C6:86:60:1B:C3:B4:89:84:72:4A:92","sha256":"FB:12:4E:1B:42:51:F1:34:85:E4:29:67:F9:E7:1B:F7:49:7F:01:C8:5A:8F:0D:71:71:38:3C:5B:27:97:49:88"}}},"request":{"raw":"GET /fonts/SpotifyMixUITitleVariable-b22c350cb4623a51063b334f7610beac.woff2 HTTP/1.1\r\nHost: encore.scdn.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://musicuae.top/\r\nOrigin: https://musicuae.top\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: font/woff2\r\nlast-modified: Fri, 24 Oct 2025 08:37:14 GMT\r\netag: \"b11039fa128b17b2be82f7229bcce841\"\r\ncontent-encoding: gzip\r\nx-amz-checksum-crc32c: aUtTKg==\r\naccept-ranges: bytes\r\ncontent-length: 362095\r\nexpires: Thu, 05 Mar 2026 00:58:39 GMT\r\ndate: Thu, 05 Mar 2026 00:58:39 GMT\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=15768000\r\naccess-control-max-age: 86400\r\naccess-control-allow-headers: range\r\naccess-control-allow-methods: GET\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":362856,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 362856, version 1.6750","md5":"b22c350cb4623a51063b334f7610beac","sha1":"c83166e243749b2fc23642cc4dff015dfb10a73a","sha256":"bca52fc5c6d2d2ee3357d11d625227a6b01c86534a737cc37f9625d467cb2132","sha512":"1d23608a9b306d16aaee2cfb748b583a01b5aafdd1c327bf9b85dfce7ba7ea99b39e82de40a5d0ed245c0164c566a727320f4f254502c2cae23aa14c46e6ae6d","ssdeep":"6144:pyE2fgAlGapLDcovKNE57iFPOLatylR87LVsbtyJM/Htqpv7jfcs3t16yOwB:L2fgIGaJDcovKWtLYxsivcU4yOwB","tlshash":"da742358d00dadc6e473c80b45ba9344aec97cea57bf8f4e267505c7d71c0640a8e7ae","first_seen":"2026-03-05T00:59:10.972452Z","last_seen":"2026-03-14T23:34:43.762371Z","times_seen":6,"resource_available":false,"data":null}},"time_used":288,"timings":{"blocked":-1,"dns":219,"connect":3,"send":0,"wait":10,"receive":12,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"wwwmarketing.scdn.co/static/images/premium/voyager/hero-mobile-poster.webp","fqdn":"wwwmarketing.scdn.co","domain":"scdn.co","tld":"co"},"ip":{"addr":"23.36.77.107","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.585Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.scdn.co","organization":"Spotify AB"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 27 Jun 2025 00:00:00 GMT","end":"Tue, 28 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:25:66:57:1B:87:1F:49:8D:C6:86:60:1B:C3:B4:89:84:72:4A:92","sha256":"FB:12:4E:1B:42:51:F1:34:85:E4:29:67:F9:E7:1B:F7:49:7F:01:C8:5A:8F:0D:71:71:38:3C:5B:27:97:49:88"}}},"request":{"raw":"GET /static/images/premium/voyager/hero-mobile-poster.webp HTTP/1.1\r\nHost: wwwmarketing.scdn.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/webp\r\nlast-modified: Tue, 19 Aug 2025 17:09:34 GMT\r\netag: \"071f7b26eb8bdc3d1e350f75a8937d04\"\r\nx-amz-checksum-crc32c: pKF/SQ==\r\naccept-ranges: bytes\r\ncontent-length: 20592\r\nexpires: Thu, 05 Mar 2026 00:58:39 GMT\r\ndate: Thu, 05 Mar 2026 00:58:39 GMT\r\ncache-control: public, max-age=86400\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=15768000\r\naccess-control-max-age: 86400\r\naccess-control-allow-headers: range\r\naccess-control-allow-methods: GET\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":20592,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 780x1500, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"071f7b26eb8bdc3d1e350f75a8937d04","sha1":"391263be1aa5a6a66da2e25b05bb31feb3accb36","sha256":"28d0c0d87f8ac83c5c907b141901ccad6248ad3c021a359d3a0bb055c79a6460","sha512":"ca2e03d11ea93aa57e639e9626db21e7fcfe8b00bddbfc5a3a2cf2bca80eec37c976e996711e7de0de0042959a532c459ca84a618a88c603a4334b47e45300a4","ssdeep":"384:pJY0kzZX2sZGtsUJoS4CPFdI/NOpTYHQFjNtoEeZ1:pJLkzZXVZGXJFtdIlSYHyjNWZ1","tlshash":"a092e118302c4d08a44e3f794f3a8db5d116f3c936cf59a3bbe9a41615446c4ce6adf2","first_seen":"2026-03-05T00:59:10.973895Z","last_seen":"2026-03-14T23:34:43.739353Z","times_seen":6,"resource_available":false,"data":null}},"time_used":557,"timings":{"blocked":266,"dns":237,"connect":1,"send":0,"wait":7,"receive":1,"ssl":41},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/5ac33643dc89d4b9.css","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.589Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/5ac33643dc89d4b9.css HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/css\r\nLast-Modified: Wed, 04 Mar 2026 05:40:57 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69a7c5e9-27ec2\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":163522,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"8a1bac9cdfcc969f0fdd6f4015310945","sha1":"d72dea3ad48d9e60fd74fa6db0d50f2456364494","sha256":"0d1dea7f3b638937836f64adae24e96077ee1811f0e392980f475f5932798d9e","sha512":"41cde85e400bb2cf072fb19f988231fe83dc44eca37c4e43e70ef294be24a4c583dff7e167dcc365f373efe6da24480da4b865d3b9cf892d249cf813281d548a","ssdeep":"1536:/e8zLMCk+POCOEOUOSOSK/PWdenxd7+sP8wyY+prQi:FC49L","tlshash":"ecf394605282943cfe27167e52e565cdc328bc42ce4269f89d1442f0aecfefd61b359a","first_seen":"2026-03-05T00:59:10.98434Z","last_seen":"2026-05-25T22:53:16.930228Z","times_seen":9,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/dt-7scsKMXYBS1WCjk1yGfrZdGi7sW6KP","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.599Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/dt-7scsKMXYBS1WCjk1yGfrZdGi7sW6KP HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Length: 654894\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:11 GMT\r\nETag: \"9fe2e-64c2c44742bc0\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":654894,"size_decoded":0,"mime_type":"text/plain","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65471)","md5":"947038b983419a7bfa8948471f7741cb","sha1":"d8eade4d43114c4fc14d8bfe22944f37e99577ad","sha256":"fdd1e1b6e1ab98fac73aa64d48e53b2c07fe36db292c5b59b7f10d4abc6a4cfe","sha512":"952b5a66c46dd1f8e1831c948fe56bc50abe618d1ff96de47c25ddff1c152fbad24c1d5f66745d5dda20661a30c4148c0d7bc92848be2d7f0cda69d89a917f04","ssdeep":"12288:h0ZBKMzGVtF5T/RlY698V7kNgQ6nVLvqllyREcwasBpZLZU0M5adq:h0ZBKz11U5aq","tlshash":"ffe45b543206603a19a749b6f89f730e7738ab52d91057c2f6d949a34fdce48a22fd3c","first_seen":"2026-03-05T00:59:10.986827Z","last_seen":"2026-03-05T00:59:10.986827Z","times_seen":1,"resource_available":false,"data":null}},"time_used":113,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":32,"receive":81,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/framework-ac6e973895ed064a.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.603Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/framework-ac6e973895ed064a.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 58067\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:15 GMT\r\nETag: \"2ccd5-64c2c44b134c0-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":183509,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"38b4236df4454597da4d65241d692a16","sha1":"dba82bb652e6f1db9714da6119310865a7240be9","sha256":"9405aad7bb3eb3e44aa1f5effcd8736a5119adf9b5ab21c6910a14240c6668a9","sha512":"e68231b6cfd406923a4541cb8fecb7d295c0a470c017b1b9f9be7fef2c12308e6519f86b3cc9644c9be55bac08194906ccc995bbf8142e7e8434aac1f4e67d60","ssdeep":"1536:nBfw+oWdvJtAucjir0PeapI+HmsQ75q34rr9XBu3Kwtj6SEiR1FEp4nwF/eMDqAy:GLuclPemGFqi9XBuptjm1JJeFP","tlshash":"e704fae83955f2526eb352b7009f2803737c262b280d4d60a211fd9db5b845eb17bf9e","first_seen":"2025-10-30T12:14:04.268913Z","last_seen":"2026-03-14T23:34:43.755424Z","times_seen":8,"resource_available":true,"data":null}},"time_used":244,"timings":{"blocked":32,"dns":1,"connect":26,"send":0,"wait":127,"receive":21,"ssl":32},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/main-a947eab3b5970c93.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.605Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/main-a947eab3b5970c93.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:20 GMT\r\nETag: \"412b2-64c2c44fd8000-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":266930,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (38603)","md5":"31c6753b50e37583650ea7560070390b","sha1":"537a2b3778592e0ae7b3aa91f07fa1e01e41f46e","sha256":"56264a3988e77c5b5b376d7920ade0c837c6053690b992d0dc6156744710985d","sha512":"86d4a7aef1bd004e34c9e9ce44c976635bc86a36de9e2b813c5dc0f6b671aab8ad3fc715cadc71f755bea078c271cfdd2ffef50e5718478809bbccb241d70f37","ssdeep":"3072:sxM+N/xezt/04NJO0twcoauIms3qZ2Kl926yqWkwVWVjSySKhVsYhcGzNO:sx5N/xehzjZoau1si2KfQq/V/ueO","tlshash":"be4417f673d2f47203ab01a4903b0002f37a4da5141e5469f3a9dcde79a499da2f2f79","first_seen":"2026-03-05T00:59:10.991903Z","last_seen":"2026-03-14T23:34:43.764966Z","times_seen":6,"resource_available":true,"data":null}},"time_used":279,"timings":{"blocked":31,"dns":1,"connect":29,"send":0,"wait":158,"receive":27,"ssl":30},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"wwwmarketing.scdn.co/img/favicon-16x16.png","fqdn":"wwwmarketing.scdn.co","domain":"scdn.co","tld":"co"},"ip":{"addr":"23.36.77.107","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:40.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.scdn.co","organization":"Spotify AB"},"issuer":{"commonName":"DigiCert Global G2 TLS RSA SHA256 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Fri, 27 Jun 2025 00:00:00 GMT","end":"Tue, 28 Jul 2026 23:59:59 GMT"},"fingerprint":{"sha1":"1F:25:66:57:1B:87:1F:49:8D:C6:86:60:1B:C3:B4:89:84:72:4A:92","sha256":"FB:12:4E:1B:42:51:F1:34:85:E4:29:67:F9:E7:1B:F7:49:7F:01:C8:5A:8F:0D:71:71:38:3C:5B:27:97:49:88"}}},"request":{"raw":"GET /img/favicon-16x16.png HTTP/1.1\r\nHost: wwwmarketing.scdn.co\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Thu, 23 Nov 2023 09:19:33 GMT\r\netag: \"c2b29c226927df4e0eb2be37d25fd9e9\"\r\nx-amz-meta-goog-reserved-file-mtime: 1700729942\r\ncontent-type: image/png\r\nx-amz-checksum-crc32c: ncZlNg==\r\naccept-ranges: bytes\r\ncontent-length: 415\r\nexpires: Thu, 05 Mar 2026 00:58:40 GMT\r\ndate: Thu, 05 Mar 2026 00:58:40 GMT\r\ncache-control: public, max-age=86400\r\naccess-control-allow-origin: *\r\nstrict-transport-security: max-age=15768000\r\naccess-control-max-age: 86400\r\naccess-control-allow-headers: range\r\naccess-control-allow-methods: GET\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":415,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced","md5":"c2b29c226927df4e0eb2be37d25fd9e9","sha1":"9378ffca2786da43a220d44143ee10ede74929e3","sha256":"121bc20277788ed82b7ea827444a0fad320991b8923c64b1ff0d805623938824","sha512":"7a79a5b4e5ccf7666c874fc60445c24e703cdfc80166e0c254064375d6328b95d03043dc3ff60829d317f788fdb182572dc638f0b18277764f409d5472224357","ssdeep":"","tlshash":"50e0f193fe621badc234eab7f36f64705490bb2582b63d31e54c2bc47a512d053d9870","first_seen":"2023-07-01T06:13:13Z","last_seen":"2026-03-14T23:34:43.757857Z","times_seen":2536,"resource_available":false,"data":null}},"time_used":2,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/_app-f291bb09223036f5.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.606Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/_app-f291bb09223036f5.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 38625\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:22 GMT\r\nETag: \"21218-64c2c451c0480-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":135704,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"65a5876acc622c6ec72f121ca9bbfefd","sha1":"dcc117ec4322be9a0373c65f6848a8b6bc7fbf17","sha256":"142944f456458fbaac6c063c13fc317a134b4c27c182a9faf193593027f5e2eb","sha512":"229c86d2e121183c81284789cb579136983c2adbc2f0bac0bdba5af328bd38bc457df531bc1e18cef6d676769b742c3539f1f01e905603bcfb0ceace3492a61f","ssdeep":"3072:iaBzjzSd3X5gHeDPEWUjWsQb6jL4Pf+QOVhW/i4f7szUBnUOJvQKhLVmvv8:3Q5gHQPEWUjWBBGhWc8","tlshash":"8ed309da73a0b066439741a6943b0403f338a969054d092cb364ecff797e589b2faf75","first_seen":"2026-03-05T00:59:10.995485Z","last_seen":"2026-03-14T23:34:43.741272Z","times_seen":6,"resource_available":true,"data":null}},"time_used":132,"timings":{"blocked":35,"dns":0,"connect":0,"send":0,"wait":77,"receive":20,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/premium.voyager-6a18f20b8be988a2.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.620Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/premium.voyager-6a18f20b8be988a2.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nContent-Length: 49511\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:42 GMT\r\nETag: \"3dd91-64c2c464d3180-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":253329,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65516), with no line terminators","md5":"ff7fe448ebe27c0311b7c18692adb8ab","sha1":"0bf7a68426caf3baa7e879facb372791f5260e15","sha256":"dafd7be52045ee4a165f4ad093071b320f198a324751d120a3cfc0d322bed642","sha512":"648e47d2a711860a29b6dbf90c4f2ba24972d40e7c326705fbe9d023f72e7bdca8b39bac5badcf1c217ee8b998e7f66cd9752d67a5d47667382a6c17928c9a5b","ssdeep":"3072:C+UNTXCmZer+OpOiBC3au4ItZXaktgDhz6ptzJg3i1:C+UNTXQ+8Aau4It9bgd6j5","tlshash":"a034085eab20f434b19f8ba7a6ae387c7cb41bd0ea446d31b07f5b6705c2f50d219921","first_seen":"2026-03-05T00:59:10.997372Z","last_seen":"2026-03-14T23:34:43.728584Z","times_seen":6,"resource_available":true,"data":null}},"time_used":288,"timings":{"blocked":184,"dns":0,"connect":0,"send":0,"wait":103,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-05T00:58:38.992Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 38115\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 13:37:23 GMT\r\nETag: \"30948-64c32eb7f94b0-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":198984,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (9897)","md5":"a186f056b5da71716d59c66ce9a2e77d","sha1":"789eaf18a62d7d3cf8dce81086cf011e3058a75f","sha256":"3ec112db46aa2a65c29966f2df76c97099cc1899e98716008053db15f1400e74","sha512":"9f9a2ea5ea1457179d17580037e174d8daac68b5d6c977d466ffde6898e4d7c53b2cc3765f04f5387ed133064adc2ff9c8c3f10a1494aca3e57d49d8b328c85b","ssdeep":"3072:JHXxUPblHq+Q4nfLA8JnviLZkiZqRTdET8jNJfaHK:xXxQlTQoLA8MLZkiZqRTdET8jNJfx","tlshash":"0f14e5b2b784203e904b47e4937b391c129d70aafe517ab4b57e4bf69be3e52d107810","first_seen":"2026-03-05T00:59:11.001Z","last_seen":"2026-03-05T08:27:22.766491Z","times_seen":3,"resource_available":false,"data":null}},"time_used":779,"timings":{"blocked":363,"dns":315,"connect":20,"send":0,"wait":39,"receive":14,"ssl":26},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/6e359df5004afc64.css","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.594Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/6e359df5004afc64.css HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/css\r\nLast-Modified: Wed, 04 Mar 2026 05:40:58 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69a7c5ea-15230\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":86576,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"905e57454156253907fa6ab98713b001","sha1":"119df26bae004210f198c98dbcd1b8aabf927c44","sha256":"c1d863297ff0a2bb8c9a0b2ddbcb3635eff7556bc610e1d5828c475cb20bdac1","sha512":"1db2ef969eb5d65ce218f393a0b92f7439b4029e3a3a9a4fc7a4ee6128139672e84f48ef44af27bbcc65e9af25aea9128d12998ed57ce3c3e546f6950d3f7716","ssdeep":"768:zqKy6mHJusnMvnSwPjgCskywp/bQ6i0wuOByH4wmgNipidYKWMsF7T/azqq4t3VV:zw6mhwp/bQf6iqiyWMsFPazqqtm7rN","tlshash":"38834366b7503538a06fca28d39ffd3c53a446529f02bef5b8619b1745c73db026b828","first_seen":"2026-03-05T00:59:11.003936Z","last_seen":"2026-03-14T23:34:43.764451Z","times_seen":6,"resource_available":false,"data":null}},"time_used":128,"timings":{"blocked":30,"dns":1,"connect":19,"send":0,"wait":40,"receive":4,"ssl":26},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"musicuae.top/files/90-a9cbbcc012808602.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84","fqdn":"musicuae.top","domain":"musicuae.top","tld":"top"},"ip":{"addr":"212.224.93.239","port":443,"asn":44066,"as":"firstcolo GmbH","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://musicuae.top/","date":"2026-03-05T00:58:39.615Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"musicuae.top","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 14:22:36 GMT","end":"Sun, 31 May 2026 14:22:35 GMT"},"fingerprint":{"sha1":"16:D3:5C:E1:34:5A:69:06:42:F1:70:BA:09:C7:7E:EE:B0:54:D3:0E","sha256":"A9:12:3E:DF:7E:7E:D6:CB:F8:BF:30:D9:E2:36:44:05:D6:F4:47:25:E1:D2:41:14:18:E8:BC:86:71:15:D4:77"}}},"request":{"raw":"GET /files/90-a9cbbcc012808602.js.%D8%AA%D9%86%D8%B2%D9%8A%D9%84 HTTP/1.1\r\nHost: musicuae.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://musicuae.top/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.28.2\r\nDate: Thu, 05 Mar 2026 00:58:39 GMT\r\nContent-Type: text/javascript\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nLast-Modified: Wed, 04 Mar 2026 05:41:35 GMT\r\nETag: \"39cb5-64c2c45e261c0-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.28.2","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":236725,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"531605525e3ca2f4c88aaa3f3514e62b","sha1":"db3046cce627147d287d0ad1c2b4b5e8921c6db4","sha256":"353810e259a19ce8874e2d2ab0d16a67039e5c555882db245f8928720ae91647","sha512":"3f708901a41be16ad8aab0a295e73111ad5f349d029d2c3b43d514050cb32165639c998c8dc50d5a6ef485842ff85525d012f37b493e05c95194d62f1c60b76e","ssdeep":"6144:+dgrXrFNmg1bUHw67VGRMSrG6nwSrell2UF:CgrXr7mg1Iz0RxnwSrelllF","tlshash":"23345ca971053774afe363e1e61a1203663b649935cc8825716accf91dad8c8037ffb6","first_seen":"2026-03-05T00:59:11.006198Z","last_seen":"2026-03-14T23:34:43.725927Z","times_seen":6,"resource_available":true,"data":null}},"time_used":299,"timings":{"blocked":114,"dns":0,"connect":0,"send":0,"wait":149,"receive":36,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"ultradns","sensor_type":"DNS","title":"DigiCert UltraDNS","description":"DigiCert UltraDNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://vercara.digicert.com/ultra-dns-public","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"cira_dns","sensor_type":"DNS","title":"CIRA Canadian Shield DNS","description":"CIRA Canadian Shield DNS","scan_date":"2026-03-05","alert":"Sinkholed","trigger":"musicuae.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cira.ca/en/canadian-shield/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-05","alert":"Phishing Block","trigger":"musicuae.top","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}}]}