{"report_id":"9b91d0cf-8110-4941-a2e0-a20beec289a5","version":6,"status":"done","tags":[],"date":"2024-09-16T19:43:59Z","url":{"schema":"http","addr":"185.239.87.159:7777/136b9db34f4180248d97f4d68ae721c4.zip?987","fqdn":"185.239.87.159","domain":"185.239.87.159","tld":""},"ip":{"addr":"185.239.87.159","port":0,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"final":{"url":{"schema":"about","addr":"about:privatebrowsing","fqdn":"","domain":"","tld":""},"title":"about:privatebrowsing"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-28T20:12:12Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-09-15 18:12:18","alert_count":0,"request_count":4,"received_data":3550,"sent_data":1308,"comment":"","tags":null,"fingerprints":null},{"fqdn":"185.239.87.159:7777","ip":{"addr":"185.239.87.159","port":0,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":1,"request_count":1,"received_data":1224222,"sent_data":430,"comment":"","tags":null,"fingerprints":null},{"fqdn":"r11.o.lencr.org","ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-07 07:43:57","last_seen":"2024-09-15 18:13:05","alert_count":0,"request_count":5,"received_data":4435,"sent_data":1635,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":[{"md5":"83a26f8137b8795f7b34adfb465de9cc","sha1":"581bfb22fdf7f86001db4b15cb1132b5f5d0669c","sha256":"a189b9cc4b03f1b8039de028bcbe83714a151e26c1c76fa014f67ad315f1e867","sha512":"e74caf07f9dc118f4a769ac0d3453cb5f7212c4a8f8184a4611d6db2d856de55f444ce225d8dd58cb2346acb3af13844becb9820b924e44a037917d8645c7b2f","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","size":1223955,"url":{"schema":"http","addr":"185.239.87.159:7777/136b9db34f4180248d97f4d68ae721c4.zip?987","fqdn":"185.239.87.159:7777","domain":"185.239.87.159","tld":"159:7777"},"ip":{"addr":"185.239.87.159","port":0,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"archive":[{"path":"file.tmp","filename":"file.tmp","modified":"","Modified":"2024-09-12T02:35:09Z","magic":"data","size":1280000,"md5":"136b9db34f4180248d97f4d68ae721c4","sha1":"c2d0173b6501bbbeb9e83c7c420aea64789af3b5","sha256":"c5b8314b63a685aa062167c08a79d19a0b2ee991a61fc720f45302eb40746a66","sha512":"c34dcbd080fbb3d059a3e98343bf995018c9606dc6fc2bd0c83b0e59218d9ec070ad7cfa90c61dadeb21e03549bf69c18b9ca8e178528d541c9cf6fc0426da14","alerts":{"urlquery":null,"analyzer":null}},{"path":"version.txt","filename":"version.txt","modified":"","Modified":"2024-09-12T02:35:09Z","magic":"ASCII text, with CRLF line terminators","size":47,"md5":"458e53aff25207d73a9deb8b2b06efc3","sha1":"6acdd6465f981430260bd0a666b877ed6e5abbc0","sha256":"3446844b79a693f847798b42a5907cf253d9f8c8d9d3932719d3b1e2559fdafc","sha512":"713ef51f99de2c93fa2f8398362d0719e974c838cd019df56dc6535758b1dfa71ea5bea93f58e44b850a734b17c03583ece652c107c7b35e8e37d6e599fcc964","alerts":{"urlquery":null,"analyzer":null}}],"alerts":{"urlquery":null,"analyzer":null}}],"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-16","alert":"Sinkholed","trigger":"185.239.87.159","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}]},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-16T19:43:33.637296958Z","timestamp":1726515813637,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"73C53B2F9EA6CB310EB9DF3E6D917F4649A2C2470B3AE7EE1E4BBB7102550016\"\r\nLast-Modified: Sun, 15 Sep 2024 21:19:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=19108\r\nExpires: Tue, 17 Sep 2024 01:02:01 GMT\r\nDate: Mon, 16 Sep 2024 19:43:33 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"b4ddabe3dc0fdf5ea3a82a9aebbb01c6","sha1":"bfbff7cc66b83f1e16d8739a987f175866a6de68","sha256":"73c53b2f9ea6cb310eb9df3e6d917f4649a2c2470b3ae7ee1e4bbb7102550016","sha512":"fa30674cb0205ddc62bceb4f66b8b8cb150c5da00de2c0ca2fbd9bc68a9a1817e768db99f30e5c54fa4418d89fe881549dc6540662001362b9f80107c53cfa73","ssdeep":"","tlshash":"82f00e372aa875a0bee9154269f9d83d4a753dba72002fc5188216d2ef607e846cc80c","first_seen":"2024-09-16T01:16:34Z","last_seen":"2024-09-19T20:22:21.795612Z","times_seen":28960,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-16T19:43:33.683881911Z","timestamp":1726515813683,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"A50CD1C21CA6FCD7B91806CC79BB4669602F2ED234D5722704DF5959AFFECAD0\"\r\nLast-Modified: Sun, 15 Sep 2024 00:20:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=11833\r\nExpires: Mon, 16 Sep 2024 23:00:46 GMT\r\nDate: Mon, 16 Sep 2024 19:43:33 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"cbe3df23d7a1a604654e06ccca10ab85","sha1":"907419e4690cac7c3af83a771260ec3dd8118bf3","sha256":"a50cd1c21ca6fcd7b91806cc79bb4669602f2ed234d5722704df5959affecad0","sha512":"a91c0b95465fe8bd55e9e735258db4f89bd976c8944f47d6e138b987e6bdb55d3ff103010b695c901a92399eab71333883a6a8eebde412f2174ed4c872b92b45","ssdeep":"","tlshash":"11f07577b995f600fee4154d15e4e064962267ffe5c410e1258023f11601bf8e48840c","first_seen":"2024-09-15T07:08:20Z","last_seen":"2024-09-19T20:30:08.478969Z","times_seen":27661,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-16T19:43:34.025664498Z","timestamp":1726515814025,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"D86C86521D6DFFA0AE29CCCBE08A53AF825337B4D0E308884BF33122EE11E415\"\r\nLast-Modified: Sun, 15 Sep 2024 02:34:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2426\r\nExpires: Mon, 16 Sep 2024 20:24:00 GMT\r\nDate: Mon, 16 Sep 2024 19:43:34 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"050718ab9dc2838d2e9024055cb41483","sha1":"6e55983a400fc690d87e12582f4fa8553e7b95c6","sha256":"d86c86521d6dffa0ae29cccbe08a53af825337b4d0e308884bf33122ee11e415","sha512":"b3bd274ec48b2cfa5c8983f00450b44d98936956dce298188bd7114c903fd5de430aabed5d5aff911c25f1be154c7c12d591b30411371380af2b1c69382c0853","ssdeep":"","tlshash":"d6f00e603ba2ec51a6f51460d8e4d61e7d206aea3e5030b410e5d2d13ea3becc58048c","first_seen":"2024-09-15T13:24:10Z","last_seen":"2024-09-19T20:27:45.358781Z","times_seen":16054,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-16T19:43:34.358640234Z","timestamp":1726515814358,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"658FA4C02B7173A1EDD360B308D5A7C4B2E368C43A45BA39463A13776A20628C\"\r\nLast-Modified: Sun, 15 Sep 2024 02:33:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2585\r\nExpires: Mon, 16 Sep 2024 20:26:39 GMT\r\nDate: Mon, 16 Sep 2024 19:43:34 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"14f167e71d8f49f0b7b3456f7e0d1139","sha1":"c71676c9b8d66326a877780f7ef66512f362f623","sha256":"658fa4c02b7173a1edd360b308d5a7c4b2e368c43a45ba39463a13776a20628c","sha512":"b466cbc05ca4bb509bd2fd180533b7068ce3b96e5a40e710b9292f4e7094e479e2e246016ae55dce8a9318a6cbb0d00320e849bdb8143aa3c022505373a3f367","ssdeep":"","tlshash":"53f0055356b27f24d33629009c5999653c11d8d93514e4f97d90c3d2e4207f8edcc10d","first_seen":"2024-09-15T08:04:40Z","last_seen":"2024-09-19T20:29:46.624671Z","times_seen":11703,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"185.239.87.159:7777/136b9db34f4180248d97f4d68ae721c4.zip?987","fqdn":"185.239.87.159:7777","domain":"185.239.87.159","tld":"159:7777"},"ip":{"addr":"185.239.87.159","port":0,"asn":55933,"as":"Cloudie Limited","country":"Hong Kong","country_code":"HK"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-16T19:43:36.592226418Z","timestamp":1726515816592,"http_version":"","security_state":"","security_info":null,"request":{"raw":"GET /136b9db34f4180248d97f4d68ae721c4.zip?987 HTTP/1.1\r\nHost: 185.239.87.159:7777\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nContent-Type: application/x-zip-compressed\r\nLast-Modified: Wed, 11 Sep 2024 18:35:52 GMT\r\nAccept-Ranges: bytes\r\nETag: \"d6d61b6e794db1:0\"\r\nServer: Microsoft-IIS/7.5\r\nX-Powered-By: ASP.NET\r\nDate: Mon, 16 Sep 2024 19:45:08 GMT\r\nContent-Length: 1223955\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":1223955,"size_decoded":1223955,"mime_type":"application/zip","magic":"Zip archive data, at least v2.0 to extract, compression method=deflate","md5":"83a26f8137b8795f7b34adfb465de9cc","sha1":"581bfb22fdf7f86001db4b15cb1132b5f5d0669c","sha256":"a189b9cc4b03f1b8039de028bcbe83714a151e26c1c76fa014f67ad315f1e867","sha512":"e74caf07f9dc118f4a769ac0d3453cb5f7212c4a8f8184a4611d6db2d856de55f444ce225d8dd58cb2346acb3af13844becb9820b924e44a037917d8645c7b2f","ssdeep":"24576:fM+sZ1BLf9qio2wCQDtbCJwg34jDd6DAJ2TWW+eEyAsjetgoCGlm:fM+sfHBo2whbCWgojZPIEwuCGlm","tlshash":"d24533c5fcb322df5d15aa9aa03cb1350e59f04a3b742cb6d492c5b2fd9217da8534b0","first_seen":"2024-09-19T20:12:13.474284Z","last_seen":"2024-09-19T20:12:14.818527Z","times_seen":4,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"domain","title":"","description":"Quad9 DNS","scan_date":"2024-09-16","alert":"Sinkholed","trigger":"185.239.87.159","verdict":"malicious","severity":"medium","comment":"Sinkholed","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-16T19:43:36.594244818Z","timestamp":1726515816594,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"7868B9D67D4D3AA59F3CFAE358B4252F060290EEE91B140396C820B9387AF260\"\r\nLast-Modified: Sun, 15 Sep 2024 02:34:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2541\r\nExpires: Mon, 16 Sep 2024 20:25:57 GMT\r\nDate: Mon, 16 Sep 2024 19:43:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"ca723553e74ec93d39dd2f922b78cd33","sha1":"19488770f771507f7cc656302076d90be4453b52","sha256":"7868b9d67d4d3aa59f3cfae358b4252f060290eee91b140396c820b9387af260","sha512":"4b64fb24634c949f00a29e4a387a633dc6c848f940e290f886a19ebb150bc49c45106e7184faeb964606ebe2153d582dcfb9b924ab87d157b0eb7ce779beccee","ssdeep":"","tlshash":"25f0052636206865265d1417d9dde83679211d98355127aa496403e478693fe545810c","first_seen":"2024-09-15T12:44:44Z","last_seen":"2024-09-19T20:28:00.588003Z","times_seen":10856,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-16T19:43:36.595892073Z","timestamp":1726515816595,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"7868B9D67D4D3AA59F3CFAE358B4252F060290EEE91B140396C820B9387AF260\"\r\nLast-Modified: Sun, 15 Sep 2024 02:34:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2541\r\nExpires: Mon, 16 Sep 2024 20:25:57 GMT\r\nDate: Mon, 16 Sep 2024 19:43:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"ca723553e74ec93d39dd2f922b78cd33","sha1":"19488770f771507f7cc656302076d90be4453b52","sha256":"7868b9d67d4d3aa59f3cfae358b4252f060290eee91b140396c820b9387af260","sha512":"4b64fb24634c949f00a29e4a387a633dc6c848f940e290f886a19ebb150bc49c45106e7184faeb964606ebe2153d582dcfb9b924ab87d157b0eb7ce779beccee","ssdeep":"","tlshash":"25f0052636206865265d1417d9dde83679211d98355127aa496403e478693fe545810c","first_seen":"2024-09-15T12:44:44Z","last_seen":"2024-09-19T20:28:00.588003Z","times_seen":10856,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-16T19:43:36.597432778Z","timestamp":1726515816597,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"7868B9D67D4D3AA59F3CFAE358B4252F060290EEE91B140396C820B9387AF260\"\r\nLast-Modified: Sun, 15 Sep 2024 02:34:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2541\r\nExpires: Mon, 16 Sep 2024 20:25:57 GMT\r\nDate: Mon, 16 Sep 2024 19:43:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"ca723553e74ec93d39dd2f922b78cd33","sha1":"19488770f771507f7cc656302076d90be4453b52","sha256":"7868b9d67d4d3aa59f3cfae358b4252f060290eee91b140396c820b9387af260","sha512":"4b64fb24634c949f00a29e4a387a633dc6c848f940e290f886a19ebb150bc49c45106e7184faeb964606ebe2153d582dcfb9b924ab87d157b0eb7ce779beccee","ssdeep":"","tlshash":"25f0052636206865265d1417d9dde83679211d98355127aa496403e478693fe545810c","first_seen":"2024-09-15T12:44:44Z","last_seen":"2024-09-19T20:28:00.588003Z","times_seen":10856,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-16T19:43:36.598883162Z","timestamp":1726515816598,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"7868B9D67D4D3AA59F3CFAE358B4252F060290EEE91B140396C820B9387AF260\"\r\nLast-Modified: Sun, 15 Sep 2024 02:34:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2541\r\nExpires: Mon, 16 Sep 2024 20:25:57 GMT\r\nDate: Mon, 16 Sep 2024 19:43:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"ca723553e74ec93d39dd2f922b78cd33","sha1":"19488770f771507f7cc656302076d90be4453b52","sha256":"7868b9d67d4d3aa59f3cfae358b4252f060290eee91b140396c820b9387af260","sha512":"4b64fb24634c949f00a29e4a387a633dc6c848f940e290f886a19ebb150bc49c45106e7184faeb964606ebe2153d582dcfb9b924ab87d157b0eb7ce779beccee","ssdeep":"","tlshash":"25f0052636206865265d1417d9dde83679211d98355127aa496403e478693fe545810c","first_seen":"2024-09-15T12:44:44Z","last_seen":"2024-09-19T20:28:00.588003Z","times_seen":10856,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r11.o.lencr.org/","fqdn":"r11.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-09-16T19:43:36.600371733Z","timestamp":1726515816600,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r11.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"7868B9D67D4D3AA59F3CFAE358B4252F060290EEE91B140396C820B9387AF260\"\r\nLast-Modified: Sun, 15 Sep 2024 02:34:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=2541\r\nExpires: Mon, 16 Sep 2024 20:25:57 GMT\r\nDate: Mon, 16 Sep 2024 19:43:36 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"ca723553e74ec93d39dd2f922b78cd33","sha1":"19488770f771507f7cc656302076d90be4453b52","sha256":"7868b9d67d4d3aa59f3cfae358b4252f060290eee91b140396c820b9387af260","sha512":"4b64fb24634c949f00a29e4a387a633dc6c848f940e290f886a19ebb150bc49c45106e7184faeb964606ebe2153d582dcfb9b924ab87d157b0eb7ce779beccee","ssdeep":"","tlshash":"25f0052636206865265d1417d9dde83679211d98355127aa496403e478693fe545810c","first_seen":"2024-09-15T12:44:44Z","last_seen":"2024-09-19T20:28:00.588003Z","times_seen":10856,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}