sideworkcreative.com/css/s2.exe
40.121.16.151307 Moved Temporarily 166 B URL User Request GET HTTP/1.1 sideworkcreative.com/css/s2.exe
IP 40.121.16.151:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subjectwww.sideworkcreative.com
FingerprintB7:7B:D6:EF:12:8C:DA:FC:D9:5A:7F:B0:94:7C:B4:0D:B2:35:13:AD
ValidityThu, 01 Sep 2022 00:00:00 GMT - Mon, 02 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 57f8571518731925e9695e1a96358903
f1f86f9879f8896b7e0557607b7249f686731546
ecc6fd5a6300a8b79d74fd09d30f1a3a91fca30966d2627c2a4187583ebd3a8e
GET /css/s2.exe HTTP/1.1
Host: sideworkcreative.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Moved Temporarily
Content-Type: text/html; charset=UTF-8
Location: https://www.sideworkcreative.com/css/s2.exe
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Fri, 09 Jun 2023 05:04:01 GMT
Content-Length: 166
www.sideworkcreative.com/css/s2.exe
40.121.16.151404 Not Found 1.2 kB URL User Request GET HTTP/1.1 www.sideworkcreative.com/css/s2.exe
IP 40.121.16.151:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subjectwww.sideworkcreative.com
FingerprintB7:7B:D6:EF:12:8C:DA:FC:D9:5A:7F:B0:94:7C:B4:0D:B2:35:13:AD
ValidityThu, 01 Sep 2022 00:00:00 GMT - Mon, 02 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
NIDS Severity Alert suricata medium ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile
GET /css/s2.exe HTTP/1.1
Host: www.sideworkcreative.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Fri, 09 Jun 2023 05:04:02 GMT
Content-Length: 1245
www.sideworkcreative.com/css/s2.exe
40.121.16.151404 Not Found 166 B URL User Request GET HTTP/1.1 www.sideworkcreative.com/css/s2.exe
IP 40.121.16.151:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subjectwww.sideworkcreative.com
FingerprintB7:7B:D6:EF:12:8C:DA:FC:D9:5A:7F:B0:94:7C:B4:0D:B2:35:13:AD
ValidityThu, 01 Sep 2022 00:00:00 GMT - Mon, 02 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 57f8571518731925e9695e1a96358903
f1f86f9879f8896b7e0557607b7249f686731546
ecc6fd5a6300a8b79d74fd09d30f1a3a91fca30966d2627c2a4187583ebd3a8e
NIDS Severity Alert suricata medium ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile
GET /css/s2.exe HTTP/1.1
Host: www.sideworkcreative.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Redirect
Content-Type: text/html; charset=UTF-8
Location: https://www.sideworkcreative.com/css/s2.exe
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Fri, 09 Jun 2023 05:04:02 GMT
Content-Length: 166
www.sideworkcreative.com/css/s2.exe
40.121.16.151404 Not Found 1.2 kB URL User Request GET HTTP/1.1 www.sideworkcreative.com/css/s2.exe
IP 40.121.16.151:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subjectwww.sideworkcreative.com
FingerprintB7:7B:D6:EF:12:8C:DA:FC:D9:5A:7F:B0:94:7C:B4:0D:B2:35:13:AD
ValidityThu, 01 Sep 2022 00:00:00 GMT - Mon, 02 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
NIDS Severity Alert suricata medium ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile
GET /css/s2.exe HTTP/1.1
Host: www.sideworkcreative.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Fri, 09 Jun 2023 05:04:02 GMT
Content-Length: 1245
www.sideworkcreative.com/favicon.ico
40.121.16.151404 Not Found 1.2 kB URL GET HTTP/1.1 www.sideworkcreative.com/favicon.ico
IP 40.121.16.151:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sideworkcreative.com/css/s2.exe
Certificate IssuerDigiCert Inc
Subjectwww.sideworkcreative.com
FingerprintB7:7B:D6:EF:12:8C:DA:FC:D9:5A:7F:B0:94:7C:B4:0D:B2:35:13:AD
ValidityThu, 01 Sep 2022 00:00:00 GMT - Mon, 02 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /favicon.ico HTTP/1.1
Host: www.sideworkcreative.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sideworkcreative.com/css/s2.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Fri, 09 Jun 2023 05:04:02 GMT
Content-Length: 1245