{"report_id":"a01a633c-1e97-497b-b2d7-edcbb2af38ec","version":6,"status":"done","tags":[],"date":"2025-09-23T16:01:10Z","url":{"schema":"http","addr":"shop.apay24.asia/main/login.php","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"104.21.11.146","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"shop.apay24.asia/main/login.php","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"title":"APAY24"},"submit":{"url":{"schema":"http","addr":"shop.apay24.asia/main/login.php","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"104.21.11.146","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-28T16:01:10Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"shop.apay24.asia","ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2025-09-22","domain_rank":0,"first_seen":"2025-09-23T16:01:11.858885Z","last_seen":"2025-09-23T16:01:11.858886Z","alert_count":26,"request_count":26,"received_data":3933176,"sent_data":13767,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP:8.3.20","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"SweetAlert2","description":"SweetAlert2 is a JavaScript library that provides customisable, visually appealing, and responsive alert and modal dialog boxes for web applications.","website":"https://sweetalert2.github.io/","common_platform_enumeration":"","icon":"SweetAlert2.svg","categories":["JavaScript libraries"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/js/bundle.js?ver=","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7f7ef31eee44ae7154450d1e2ffa9202","sha1":"29b7bac3e9bb7d35574f8d48f5521f4f0b8b5080","sha256":"f8dabf30e8f35aa9f490627a8041fe1da48a9790be05fa86c3ac0e71b37df610","sha512":"73b1efd84b22029b6852a90865383d1973a07881c461520a8748ef2fa8b0a8074daa3798d10075e7fea3b73b4d260f95de5233de6fff210dc14a5d9f8d51c01d","ssdeep":"24576:Mpxhei1OANIx2myCu5PC4Aq3hWnZay0yr5nHZLF0cnh:Mpxhei1Opx2myCu5PC4Aq3h6Zay0yr5X","tlshash":"da252a88b241b13247eb20e5007f050bf3366a69740a84a8f16dd9da6d7dd4a71bbf7c","size":969968,"data":"","first_seen":"2025-09-23T16:01:15.917925Z","last_seen":"2026-05-17T22:20:18.386167Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/node_modules/sweetalert2/dist/sweetalert2.js?ver=","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2c09a292cbd5425aa758fad987306ca5","sha1":"9dfaf2f228dfb15937b9b1264c792e28fd181d36","sha256":"1b23ca86f78a391082b323f2024e50a6815fb2c700d81a985b197d84ae718913","sha512":"cb385c78a23dc9e5b7a778ddef7bbadda374b908ce710df7d7a583299d6d5aebcf58e97af8ed6e61f1b9c4638f93a49ad71d7a04dbde1fb894128e65a01ea49f","ssdeep":"1536:IEZRYSvu/88uYYCJHTOWb3qH9pIDBgbW9rp8qovU4iqEXlZRZyS9nFG0zNQIOt0O:z+S6w8hfnFdNmSgj","tlshash":"35d3845a2ef311e209ab64bc67cb5005ba355117b208cd94bdac9b501fdef3086f26ed","size":142284,"data":"","first_seen":"2025-09-23T16:01:15.930996Z","last_seen":"2026-05-17T22:20:18.406368Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/login.php","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"5bc18ec400c62f8d6c7708d5cb5d3fac","sha1":"47c5549822e9335beba011b7d57f784dbf5117a4","sha256":"12809b8e7f7d19802e85f7d388b8368711c85a2d21e0351be66d8f178611a7b9","sha512":"9dc0340b2c14ca2d3005b848cce26cdd75c024aef60d852de336394f8daa81103adc0ee6054b40376a0edc284fea4b14cbfb3536438aa2f94d4afe21dc7ec34e","ssdeep":"","tlshash":"8bf0ec8875d70e35422326944f6f9001712555a34908de24bdcce7945fbc72f9af5bc9","size":540,"data":"","first_seen":"2025-09-23T16:01:15.935295Z","last_seen":"2025-09-23T16:01:15.935295Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/js/jq.js?ver=","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"afec1a1067cdb8ecae925c3a971757de","sha1":"291bed399b22f0f18afa4c469b9f9dae2600d9c2","sha256":"5da3d2af1c306f80d0c7d70731855bb95ebedcfeb79756028106334d7a0e933b","sha512":"55805cb5b84f8c8685a52db39d2b333fc726569d23f4663b949c578bec7488ec5e055def6792a4067b10ca9187e080e7b1655e822decd6af9a05e9c8ab493050","ssdeep":"","tlshash":"3511028ebf861daa7a6b140e111fd64968b074136e08dc53e70cf4e02f61631b037315","size":1008,"data":"","first_seen":"2025-09-23T16:01:15.924834Z","last_seen":"2026-05-17T22:20:18.400219Z","times_seen":8,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/js/jquery.3.7.1.js?ver=","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"304fd509939802b85c4ffe9d58f3498f","sha1":"e82d537ceb3a36761d6f9725cb8023fe4ac18655","sha256":"126add89639e7ac92dff67c061c2e32486ecca91d0d1d1ed8f1bc5ee34596a27","sha512":"029ac435a1fc089b7989848a337f3ae5d7df702a052912e71941b390e5f976f359e957df7cb1b1c9a275a3656882defe9509ad625644f444a1f5929a5153be45","ssdeep":"6144:gwsmYhct1SS+TC1lmhTzeKRYcYmD2zK8USJsdZQ/coLGVFyy/RgL/uiOgeNTIPfD:FuYcYmD4/cZQ/coLGVFyCJTiPf7AqqAF","tlshash":"db54a3d8f78d112e423231aaad2e12cdbb7dd171561454aefd4d497c24a083c83baf7a","size":285313,"data":"","first_seen":"2024-03-21T02:35:45Z","last_seen":"2026-05-27T06:25:38.252695Z","times_seen":277,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/js/scripts.js?ver=","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e8913e6d99057aec1afabd64a1fff3c3","sha1":"51a630757d36b251e61d157932fd7e12081ff55f","sha256":"ca68d576f5b3c85f73d35ba4b6e8c0a68517d62724ffe3eaee13593bee9617be","sha512":"ae2cbdc71b9928d876076c782ba3d3617609957e9cd33f63f26fcc36cadee8dc13e48888e9926ed024b8d8c29bedc5c73f917ad87ef6d8993f1a49454ae1c52f","ssdeep":"384:PeEdegAhqoHw/Aqu3/oO7pqdMjbQyUbfWVZUQv7jDxl4FVg1/y9wJoACWQpb+ThO:PshqLAdXUaDmEOExiO2vuQ","tlshash":"63031e5924b31076447b34bd8bafa505326b12078c0aed203cdd9b849fd492d56fafee","size":38225,"data":"","first_seen":"2025-09-23T16:01:15.922742Z","last_seen":"2025-09-23T16:01:15.922742Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/css/theme.css?ver=3.2.4","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.023Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/css/theme.css?ver=3.2.4 HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:10 GMT\r\netag: \"a7-63f63179fb4a8-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 148\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Y4DlSxVe787LHCcbpAse1H7dj1I2lB%2FQQubeRoEB7ejy5IneNZ3%2B46x35f9rxILiP%2BlBl%2BYR9E1IchKkGdGdSK1izGWkQrJ9Wf%2FxL4he\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: text/css\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b94d480b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":167,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"d8302b01205f0cd4c5c73d2d8e884115","sha1":"5656dbd67bf262aaac0c02ae97179c9087af413b","sha256":"aa9350342f4d2ad266c8100a2ce0319997f88695b020f527d3a495b256c559e1","sha512":"894cb661241fc77e857683ca56a16167be804ebb358897de2e3f830aa55a78538702a79299ddda9011bcfbc5f3540eb0d7491b6cb6f6ce51355de7fd466dd3c1","ssdeep":"","tlshash":"61c08c2ce34642222ae24f8e22f425a3eb16b718a0c2aa14d01b6cd88f330f74544f0e","first_seen":"2023-05-04T19:11:17Z","last_seen":"2026-05-17T22:20:18.382728Z","times_seen":27,"resource_available":false,"data":null}},"time_used":633,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":633,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/images/flags/turkey.png","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.031Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/images/flags/turkey.png HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:19 GMT\r\netag: \"1498-63f6318258641\"\r\naccept-ranges: bytes\r\ncontent-length: 5272\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=m8CDPXPZVFVdlP8h7ULTf8i5SdnayoYnhKwN8gxQT%2FozWT98W0gaOIFlV3GI96edg2P4vvCvTPocxBWOVAfmHt7QKzfJij%2BEegc%2FljbB\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: image/png\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b95d4f0b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5272,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 90 x 60, 8-bit/color RGB, non-interlaced","md5":"8ef720859d781cb7be09ddfddaceb5ca","sha1":"a6149f0774cffab2ecebb175ee35b94e57d74e29","sha256":"d9ba3718fe2dad712950d4d22a6de9cac81d551a55190fd6cbdbb41ace59053d","sha512":"c16d3715a5f2ff0db2731a6dbcbbc2065cb3577b23f9387fbdc1ae143afd413f61434272b0167fab374d8321b4b4e12780aa44d03e445e142e67eae8b627d907","ssdeep":"96:zS7o7F5wknmWaOJnpQ/2uoeA6PHr8HgrrHXH4HSdA9Aai+L/WmwrSk/w/9iQ:zSM7FSknEMqPL8Y3fAeai1vZG7","tlshash":"e2b10914f9225c70874eb981ebdd11874bbb8a40cbd19041bcd999164cb26fcdc9ebe6","first_seen":"2025-09-23T16:01:15.908079Z","last_seen":"2025-09-23T16:01:15.908079Z","times_seen":1,"resource_available":false,"data":null}},"time_used":614,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":614,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/fonts/Roboto-Medium.woff2","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:46.358Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/fonts/Roboto-Medium.woff2 HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/assets/css/dashlite.css?ver=3.2.4\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:46 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:14 GMT\r\netag: \"104e8-63f6317dc11af\"\r\naccept-ranges: bytes\r\ncontent-length: 66792\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Mvo1WIMVwVwOqLjoFdFlAk8%2BCraaM6mP%2FtuPWbF0QFztJcNNYb%2Fu3tamCsJ4hwSJ%2Bm9%2BxoEqVIbkbH8zOpGlQah6POy4b%2FuiKAHerZdj\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: font/woff2\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41c1bd9d0b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":66792,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 66792, version 1.0","md5":"50d01d3e6c994995bcaf829e63d53d1a","sha1":"c78884cb32e7b020971ffae746fe21d90502bcae","sha256":"998b049e731114e2fa35d65f23fc6e6e153249a4ef328912e3c7c49546e2d207","sha512":"9b8b97f7778e8a740de8be26d889fa93bf5984dc1e1dbc61bbe699f143186807da985e76f5352b9b13cd92b5c88aeeb344078e13f9e4b811ecc12f6ad5665c6f","ssdeep":"1536:Gx386A9UYEHdhGr1WuXc/ce3NV5rFE/2xEpmpFq8NVjd0yiPFsiQCqCaYl2G:GZ86qg4N947E2xIGZVpTEsOq/oz","tlshash":"2563023cf5c929a4c6d3215efe11f625b4d80af581518f0cdda90b096f7eec58b99413","first_seen":"2023-04-07T14:33:54Z","last_seen":"2026-05-28T21:09:33.608671Z","times_seen":3414,"resource_available":false,"data":null}},"time_used":1009,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":608,"receive":401,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/images/logo/logo-dark-100.png","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.026Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/images/logo/logo-dark-100.png HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:25 GMT\r\netag: \"5fea-63f631877f3b0\"\r\naccept-ranges: bytes\r\ncontent-length: 24554\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xWHQr17WphncvNasVwt5qkXmJvmX7tYu9MRx%2FpW1muMUeJUP4%2B4T7Ytq6F6IxJJsiE2QKze3YkTc9JbTvgJNDzm9AAYzuDR7aVbK5E4H\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: image/png\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b94d4a0b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24554,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 201 x 100, 8-bit/color RGBA, non-interlaced","md5":"9841086e338ecc15e22445f95b19ef69","sha1":"3b5e2d0841428c17d9c020da3557e1e67479dd2f","sha256":"52a4198cb1ea8e058b619bd487f7d60aa9cc58799980a67987bd3a27272c6eff","sha512":"dee35784265e6d2b61d13ced3e9b9f75c340e99366c7166dc7f3f9634af19de380e0796accaa70911fe83a6225efefee820a26b181f0a4cc37b5a9674d6a6e25","ssdeep":"384:LmIWkBSluKthxM6XMd/kfAygDxcHkNo5y5K4jN89vSPllbHVU71v8SQv3B2TCDuy:CIWkB2uKW6K/AAyWxcEyyfjN7PlpHG7w","tlshash":"74b2e084c6409d223eb3e30e7dfd165f673d83512efa0ef9f0a3841855985e8198e4aa","first_seen":"2025-09-23T16:01:15.911061Z","last_seen":"2025-11-28T15:34:02.051248Z","times_seen":3,"resource_available":false,"data":null}},"time_used":816,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":622,"receive":194,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/_div-captcha.php","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.027Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/_div-captcha.php HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nx-powered-by: PHP/8.3.20\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: User-Agent\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=M1JXjSydTxazUDTlHV1YAI6i26o2cZwzkNVOuD89DdK1ye4FT6o9wzYaLvzEKwk4dcm6C%2BSBm4hdwuXVEWwJ%2FpGrh110ftKn%2BgLkWG1a\"}]}\r\ncontent-type: image/png\r\ncf-ray: 983b41b94d4b0b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"PHP:8.3.20","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":361,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 50, 8-bit/color RGB, non-interlaced","md5":"0b7d9a20b00a511cb18103d5e63f5fa4","sha1":"3a5ce78b9ee084bcb12879040b8f5a3a5130206c","sha256":"11ccbaab0fdef2589ad4167aa13beb4aa4c85946b11e05efbde5cdc9db9d2059","sha512":"81497a9060f0ced3b93ef66e974d43ecd5ddb5d57c5880e6bb65b4eae433b572d7863f5471ae4ccff35060ebbdd3029bfbc62aa4118a0503cc5d398b0f0f93ad","ssdeep":"","tlshash":"49e020b75b46c8ff862bd1fb5513128494db5fe5570e8505591d94413c231c0afd52cd","first_seen":"2025-09-23T16:01:15.912919Z","last_seen":"2025-09-23T16:01:15.912919Z","times_seen":1,"resource_available":false,"data":null}},"time_used":684,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":681,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/images/slides/promote1.png","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.032Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/images/slides/promote1.png HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:27 GMT\r\netag: \"38a50-63f63189b5252\"\r\naccept-ranges: bytes\r\ncontent-length: 232016\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Cv%2BNwGoXDt6FgkXxmQxwOCJqXEJLjr7TNCIA83BGniBEWKl4Nm7oWUJZRft%2FvufZM0SLdp4mbVyWVu4Y9GwmtrdTW7wuj6EYiolcqhNq\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: image/png\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b95d500b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":232016,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 460 x 380, 8-bit/color RGBA, non-interlaced","md5":"d33ae9dc6bb2d98c5b7f5eb668edf5e9","sha1":"34ba630f5cda900e7caae9705c2cd069d3ae1797","sha256":"dd1eaaa39be6a5d1fe21aabe9cbcc83a71f2bcc6a8617404a72911d3a058df18","sha512":"1df8efdfddf299d8429d8a988da3196986fa73ff031ba4bb2018eadf0a178e8729a9bf360bf48c08566ea4cf6b274e99aa6c79ae566ea5b0453bef943491ad50","ssdeep":"6144:qsiCNdLDu5OcC5lp8XIETzdOgmSrVNS33f3mf5R:HiCzs1C5LeI4zYgmMVNS3P2fz","tlshash":"1d34231440544d5a99da97d1146c40eda33f6fbefec320941f9bb978c9360cc72ae1b6","first_seen":"2025-09-23T16:01:15.914504Z","last_seen":"2025-09-23T16:01:15.914504Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1331,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":580,"receive":751,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/fonts/Nunito-Bold.woff2","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:46.522Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/fonts/Nunito-Bold.woff2 HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/assets/css/dashlite.css?ver=3.2.4\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:46 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:13 GMT\r\netag: \"aa58-63f6317c6dc08\"\r\naccept-ranges: bytes\r\ncontent-length: 43608\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HEibpvHhJo2SiNRobhF0ntHHbanVcm9TtRTs%2BTyOO4RflYgQR5nKCwNn7Ysp6L354OFvmiUxTrJaXX5ToYqlYz%2Bne2vSRDvOXa9iFi3%2B\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: font/woff2\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncf-ray: 983b41c2bda60b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":43608,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43608, version 1.0","md5":"28a6dc5d5990b88cf70a9faff2b32c73","sha1":"a34abc66b1a704d5ad70bfcb75a9939ffee1f350","sha256":"bbac27a12c4dbc1f1605db29f666da787ba3d0a16b6668526906d94a53307a0c","sha512":"96503282a5dc6e492e974f6ac5170e67a508e325369922867779b18b7221e8ced4a859375e4d270c4ffbc46e70958016d95eca0f6f15a4b22bccdef660e2e1d4","ssdeep":"768:9VvmRZHH/qIXFyzto85USEl4o6savszM0ROZdO28tteKHABL0wKCzeQ5dexHBTgv:2RQIVu5eCogsTAzjm5ABneS4xHoLb","tlshash":"3713f1078c091c98d9d3b916f99b7ef302da24b6fbd6a919f9363407813be4b06105e1","first_seen":"2023-05-04T19:11:18Z","last_seen":"2026-05-29T10:15:37.834047Z","times_seen":709,"resource_available":false,"data":null}},"time_used":840,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":443,"receive":397,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/images/slides/promote2.png","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.034Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/images/slides/promote2.png HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:27 GMT\r\netag: \"2585f-63f6318a06330\"\r\naccept-ranges: bytes\r\ncontent-length: 153695\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BF8YEmD%2FdKKFDJQiSVSNrLAiyLcMF4sGuXgElI9x78WA0JBX7hLsEncnvdra5MZTNPgRuLSVkP7ALiEIREVBa9SpdZ86GW4tLSl5NNry\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: image/png\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b95d510b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":153695,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 460 x 380, 8-bit/color RGBA, non-interlaced","md5":"284e0824423791635ac46cfe53df0809","sha1":"85ccd59bde026153e24d93438b7ca8bb94876f8a","sha256":"750c54eb76fd065277c301df6ec02212e8bd45702804094654a6eb71805bbf20","sha512":"e9b289e626531c43a0b043f3cd4ea41ea1ce9559dff483e04aa4f7874acb3b76c1c03747aa9f0cca4349229890f66d541a8ee4e472455a5c7f4f20e51db4aafb","ssdeep":"3072:F/e1s2qGDPZvnK8AuY4nR6uNVxiAD73029ZuzebF4Osp:FsD151Y4zHxiAX30eup","tlshash":"fee312060a3a8464bcb4f615389c51fef92b850956c2b680d9c9962aff7736730ec0df","first_seen":"2025-09-23T16:01:15.916522Z","last_seen":"2025-09-23T16:01:15.916522Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1197,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":610,"receive":587,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/js/bundle.js?ver=","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.036Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/js/bundle.js?ver= HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:16 GMT\r\netag: \"eccf0-63f6317f0496f-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=oXgqhZTHw59dwtF93yH%2BwthAfNTEsqkfhCkM1gQooTXt4p%2FOSgX%2FkGKEZWgdrS5S4EagPfgQbErPJ67iQBnodbAEp1ELDXjOBfOk7eFL\"}]}\r\ncontent-type: text/javascript\r\ncache-control: max-age=14400\r\ncf-ray: 983b41b95d530b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":969968,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65534), with no line terminators","md5":"7f7ef31eee44ae7154450d1e2ffa9202","sha1":"29b7bac3e9bb7d35574f8d48f5521f4f0b8b5080","sha256":"f8dabf30e8f35aa9f490627a8041fe1da48a9790be05fa86c3ac0e71b37df610","sha512":"73b1efd84b22029b6852a90865383d1973a07881c461520a8748ef2fa8b0a8074daa3798d10075e7fea3b73b4d260f95de5233de6fff210dc14a5d9f8d51c01d","ssdeep":"24576:Mpxhei1OANIx2myCu5PC4Aq3hWnZay0yr5nHZLF0cnh:Mpxhei1Opx2myCu5PC4Aq3h6Zay0yr5X","tlshash":"da252a88b241b13247eb20e5007f050bf3366a69740a84a8f16dd9da6d7dd4a71bbf7c","first_seen":"2025-09-23T16:01:15.917925Z","last_seen":"2026-05-17T22:20:18.386167Z","times_seen":5,"resource_available":true,"data":null}},"time_used":1412,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":623,"receive":789,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/fonts/Nunito-Bold.woff2","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:46.355Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/fonts/Nunito-Bold.woff2 HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/assets/css/dashlite.css?ver=3.2.4\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:46 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:13 GMT\r\netag: \"aa58-63f6317c6dc08\"\r\naccept-ranges: bytes\r\ncontent-length: 43608\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7oRxoV9a52jD0t%2FD4luXFLCDoG5J8TMO0zWDhFT5h8cO40SUFz%2FpeoNBqJh8vFpWu30h2UDTxsMpli%2FflXs7drLgHv6DA%2B8zoIvtZRfJ\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: font/woff2\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41c1bd9c0b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":43608,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 43608, version 1.0","md5":"28a6dc5d5990b88cf70a9faff2b32c73","sha1":"a34abc66b1a704d5ad70bfcb75a9939ffee1f350","sha256":"bbac27a12c4dbc1f1605db29f666da787ba3d0a16b6668526906d94a53307a0c","sha512":"96503282a5dc6e492e974f6ac5170e67a508e325369922867779b18b7221e8ced4a859375e4d270c4ffbc46e70958016d95eca0f6f15a4b22bccdef660e2e1d4","ssdeep":"768:9VvmRZHH/qIXFyzto85USEl4o6savszM0ROZdO28tteKHABL0wKCzeQ5dexHBTgv:2RQIVu5eCogsTAzjm5ABneS4xHoLb","tlshash":"3713f1078c091c98d9d3b916f99b7ef302da24b6fbd6a919f9363407813be4b06105e1","first_seen":"2023-05-04T19:11:18Z","last_seen":"2026-05-29T10:15:37.834047Z","times_seen":709,"resource_available":false,"data":null}},"time_used":1005,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":607,"receive":398,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/images/logo/favicon.png","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:47.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/images/logo/favicon.png HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:48 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:24 GMT\r\netag: \"16ae-63f631875d0d1\"\r\naccept-ranges: bytes\r\ncontent-length: 5806\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZzWpdVgInQUrfluZQC0%2FKRHrfpWaGkQX6Wju73b4NvydGuSlSMA6Qlk%2B3OM6xYtCZY64MGgjpri1ox6NaIGMOCZmBc1ZjJOk%2F%2FympCWs\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: image/png\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41c8adc40b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5806,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced","md5":"f95264cc12565c08b9d28bc400ff7b8d","sha1":"a1c23b229739184f6b53ce74a1986ecd64fee789","sha256":"c2f624b278e1af005a4eaac746bf1967adc0464550cd8665f12efcc9894b011a","sha512":"07ca116f92a83e0b809de9455f703c6be5b46f92c659ebef362bdceeecba9b73d9d7d0b66f13d2aa19a9510f564b45d9af15c87086e07c5a041501473403c039","ssdeep":"96:RD12hn4/0/oMNYZBpUGm6Ht9o4FFWzY1a/vWyM0ed7IBzaqHQvGCwvdkzq:Kn4/0/bmzpDm6o4yzY8/vWIedUl9HgG3","tlshash":"0cc18faf8b25ce07620cd92109ed555f891b0c40cd39fe92b8a6c4a716384bc53787c3","first_seen":"2025-09-23T16:01:15.919315Z","last_seen":"2025-11-28T15:34:02.050493Z","times_seen":3,"resource_available":false,"data":null}},"time_used":595,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":595,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/images/flags/spanish.png","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.029Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/images/flags/spanish.png HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:19 GMT\r\netag: \"c9f-63f6318229073\"\r\naccept-ranges: bytes\r\ncontent-length: 3231\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ljtrSMA04%2BKknJCSgs0Fytm2srm5NlIfKBDgVyJYEt6giZQAyKkUXs30xc4Pawh2gx5twzSEAEZFrRYnY0Xe%2BtuvZEWIxiGlNVs%2F8Ntb\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: image/png\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b94d4d0b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3231,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 90 x 60, 8-bit/color RGB, non-interlaced","md5":"b358758cb61d0106d5c0eb47f622bb53","sha1":"ca748fb7172130195546e6ff3207d4cb565c4676","sha256":"c52f44e7aca7eb8e6c1e490912efb2d41e33b8882e1c2f58ee6edc4bd1748890","sha512":"7f2179a51b78c0fd4c1060c2df03661188715d11e81860d84e4181a35e110699d3b1072dee9bd507adff069f5ed6acf1c9221acb463785b3545bc6bc5cb0a1f0","ssdeep":"","tlshash":"25618204fa125c20978eba81eddd41cf5bb79f90c6c290467cc9885208b12f8ec9ebd3","first_seen":"2024-08-19T22:00:21.419368Z","last_seen":"2026-04-17T00:06:48.210365Z","times_seen":9,"resource_available":false,"data":null}},"time_used":589,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":589,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/fonts/Roboto-Regular.woff2","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:46.519Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/fonts/Roboto-Regular.woff2 HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/assets/css/dashlite.css?ver=3.2.4\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:46 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:15 GMT\r\netag: \"1017c-63f6317e15d25\"\r\naccept-ranges: bytes\r\ncontent-length: 65916\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=US7s16j2vV%2BrNwI9MQK36wBoWwEu818dEPqtT%2Bl%2BlSA%2FGdiIg2puyPYgMMD6jMEqwopWzMr2KWvEkN7rvLQL%2BzLUI0Sm6csu89rU0VjX\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: font/woff2\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncf-ray: 983b41c2bda50b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":65916,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 65916, version 1.0","md5":"9feb0110b6dff9ee2b9ebd17f7a1aee6","sha1":"90bbe308a02d7cda492e3beb1a6091809b8f35c8","sha256":"8cef08634dc57d6519717c5a99a9e502bdc96586fe64770520a4820b0b089920","sha512":"e5b4c7643a1e2f3c134d2a0a4e08922d01eedb5cf7f463e885d58167f438cb1745d16aca2e455733f59ac5b63d85d4a34efb37d86281fb51273569a3e35d7085","ssdeep":"1536:nAwBjS40rROWAAffkRf+aFDExB8+m+bHvYc3uezUAAxmn:AQh0ymaFDypmcHvhumUAA0n","tlshash":"0f5302d162117d6596ed003a427b7696d800df22f3baf2698c7fb9d3e2689c603c25a0","first_seen":"2023-04-07T21:58:55Z","last_seen":"2026-05-29T16:04:50.904313Z","times_seen":4876,"resource_available":false,"data":null}},"time_used":838,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":440,"receive":398,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/fonts/Roboto-Regular.woff2","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:46.352Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/fonts/Roboto-Regular.woff2 HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/assets/css/dashlite.css?ver=3.2.4\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:46 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:15 GMT\r\netag: \"1017c-63f6317e15d25\"\r\naccept-ranges: bytes\r\ncontent-length: 65916\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=1nQzk9xPnbNWW2F2FeGSxwtbgYCH0EiFS3o8EdPQmz8f%2Bw9RtkqHB1GGhGGBf%2FMVt96Q4gM68adkonfqzGnkRbConImRfEUpXaj2V4FS\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: font/woff2\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41c1bd9b0b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":65916,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 65916, version 1.0","md5":"9feb0110b6dff9ee2b9ebd17f7a1aee6","sha1":"90bbe308a02d7cda492e3beb1a6091809b8f35c8","sha256":"8cef08634dc57d6519717c5a99a9e502bdc96586fe64770520a4820b0b089920","sha512":"e5b4c7643a1e2f3c134d2a0a4e08922d01eedb5cf7f463e885d58167f438cb1745d16aca2e455733f59ac5b63d85d4a34efb37d86281fb51273569a3e35d7085","ssdeep":"1536:nAwBjS40rROWAAffkRf+aFDExB8+m+bHvYc3uezUAAxmn:AQh0ymaFDypmcHvhumUAA0n","tlshash":"0f5302d162117d6596ed003a427b7696d800df22f3baf2698c7fb9d3e2689c603c25a0","first_seen":"2023-04-07T21:58:55Z","last_seen":"2026-05-29T16:04:50.904313Z","times_seen":4876,"resource_available":false,"data":null}},"time_used":1007,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":607,"receive":400,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/js/scripts.js?ver=","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.037Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/js/scripts.js?ver= HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:16 GMT\r\netag: \"9551-63f6317f769a4-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 8762\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ws3wPs9igyJuhe16WWTOZZoSFgUXhqn%2BI666lrwpOTROX6XJSSPZfXZDDv2i%2FQKjVL61dDduQSRnzZegDIfAZNpDR32vmBQgC7eA0FnM\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: text/javascript\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b95d540b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":38225,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (339)","md5":"e8913e6d99057aec1afabd64a1fff3c3","sha1":"51a630757d36b251e61d157932fd7e12081ff55f","sha256":"ca68d576f5b3c85f73d35ba4b6e8c0a68517d62724ffe3eaee13593bee9617be","sha512":"ae2cbdc71b9928d876076c782ba3d3617609957e9cd33f63f26fcc36cadee8dc13e48888e9926ed024b8d8c29bedc5c73f917ad87ef6d8993f1a49454ae1c52f","ssdeep":"384:PeEdegAhqoHw/Aqu3/oO7pqdMjbQyUbfWVZUQv7jDxl4FVg1/y9wJoACWQpb+ThO:PshqLAdXUaDmEOExiO2vuQ","tlshash":"63031e5924b31076447b34bd8bafa505326b12078c0aed203cdd9b849fd492d56fafee","first_seen":"2025-09-23T16:01:15.922742Z","last_seen":"2025-09-23T16:01:15.922742Z","times_seen":1,"resource_available":true,"data":null}},"time_used":617,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":616,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/js/jquery.3.7.1.js?ver=","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.038Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/js/jquery.3.7.1.js?ver= HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:16 GMT\r\netag: \"45a81-63f6317f8213c-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5qD9%2B5bz8epuUAfppETsxlO9ZNcVuyAAW3tuVA0bAoQOoNUza1LMOjScop%2FnAWQ1w2rNVE3FHGR9NtYRmTSH4f1nA0QISG80ogirrFNs\"}]}\r\ncontent-type: text/javascript\r\ncache-control: max-age=14400\r\ncf-ray: 983b41b95d550b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":285313,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text","md5":"304fd509939802b85c4ffe9d58f3498f","sha1":"e82d537ceb3a36761d6f9725cb8023fe4ac18655","sha256":"126add89639e7ac92dff67c061c2e32486ecca91d0d1d1ed8f1bc5ee34596a27","sha512":"029ac435a1fc089b7989848a337f3ae5d7df702a052912e71941b390e5f976f359e957df7cb1b1c9a275a3656882defe9509ad625644f444a1f5929a5153be45","ssdeep":"6144:gwsmYhct1SS+TC1lmhTzeKRYcYmD2zK8USJsdZQ/coLGVFyy/RgL/uiOgeNTIPfD:FuYcYmD4/cZQ/coLGVFyCJTiPf7AqqAF","tlshash":"db54a3d8f78d112e423231aaad2e12cdbb7dd171561454aefd4d497c24a083c83baf7a","first_seen":"2024-03-21T02:35:45Z","last_seen":"2026-05-27T06:25:38.252695Z","times_seen":277,"resource_available":true,"data":null}},"time_used":1021,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":634,"receive":387,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/js/jq.js?ver=","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.041Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/js/jq.js?ver= HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:16 GMT\r\netag: \"3f0-63f6317f55e35-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 498\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7aORR99J1RNcSgPSxb%2FfYYOfzpilefXJCXAiqgfsY0WWY7J5a1maRRMG4ORyDswnzeJoVTahpk1iVKLz8fo1MCUKhI44zhVbP9qJygqY\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: text/javascript\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b95d560b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1008,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"afec1a1067cdb8ecae925c3a971757de","sha1":"291bed399b22f0f18afa4c469b9f9dae2600d9c2","sha256":"5da3d2af1c306f80d0c7d70731855bb95ebedcfeb79756028106334d7a0e933b","sha512":"55805cb5b84f8c8685a52db39d2b333fc726569d23f4663b949c578bec7488ec5e055def6792a4067b10ca9187e080e7b1655e822decd6af9a05e9c8ab493050","ssdeep":"","tlshash":"3511028ebf861daa7a6b140e111fd64968b074136e08dc53e70cf4e02f61631b037315","first_seen":"2025-09-23T16:01:15.924834Z","last_seen":"2026-05-17T22:20:18.400219Z","times_seen":8,"resource_available":true,"data":null}},"time_used":609,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":609,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/login.php","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-23T16:00:44.200Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/login.php HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:44 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nx-powered-by: PHP/8.3.20\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nvary: Accept-Encoding,User-Agent\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=e3LcpBLBu66WO4RJvZY%2B0E50Za0jX6fgZQX%2BZm8QDxSUmWk83FvgRdx%2BZqUBgcRnRsrEibIsOQ72oQoFfaXJoWzrINnrNMj2tT37EMwmOkw%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nset-cookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i; Path=/\r\ncf-ray: 983b41b48fba0731-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP:8.3.20","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"SweetAlert2","description":"SweetAlert2 is a JavaScript library that provides customisable, visually appealing, and responsive alert and modal dialog boxes for web applications.","website":"https://sweetalert2.github.io/","common_platform_enumeration":"","icon":"SweetAlert2.svg","categories":["JavaScript libraries"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":16400,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"895e8bf71f10ec1c976f3c5d6bc591b8","sha1":"26b7968125497746674fcd526050f7c224ec4604","sha256":"9421fcb59e7fb5721d3c2a9e19ce7c6d44c0a364b9d8b2806a2cf215bea61cc9","sha512":"8746417611407f8ed57bd003b0e68ce064ff70bda7ab4fe59f09fd7dd7bff304f30b64304e522173625d36442440930126172e5a9ded9ff2fcce82d416874026","ssdeep":"96:I1Z68tX4aLsF1MZ4hU1EJpjzEcfPiBtKkp+YYn9nKgwi9PIA1K:uZ68tRADJpHEKPiBtKw+39K7i95K","tlshash":"d672bc2428f000bb02d784d66abaae1abfd4d507c90aa508b5fc4bc46fd7e53cc53799","first_seen":"2025-09-23T16:01:15.9261Z","last_seen":"2025-09-23T16:01:15.9261Z","times_seen":1,"resource_available":false,"data":null}},"time_used":690,"timings":{"blocked":42,"dns":25,"connect":1,"send":0,"wait":606,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/images/logo/logo-100.png","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.024Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/images/logo/logo-100.png HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:25 GMT\r\netag: \"5fea-63f631876b360\"\r\naccept-ranges: bytes\r\ncontent-length: 24554\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9Xt1slqR9Kv6SkA%2BQe2tQQ4rV1CKPIdxgUBkwlFOhIUWxdgzJ6hAyEBChC9%2Fppuy9rx2CLuvEJwLtdRNF0x9cxjV7%2BMNzQUCKrnU5P1k\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: image/png\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b94d490b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":24554,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 201 x 100, 8-bit/color RGBA, non-interlaced","md5":"9841086e338ecc15e22445f95b19ef69","sha1":"3b5e2d0841428c17d9c020da3557e1e67479dd2f","sha256":"52a4198cb1ea8e058b619bd487f7d60aa9cc58799980a67987bd3a27272c6eff","sha512":"dee35784265e6d2b61d13ced3e9b9f75c340e99366c7166dc7f3f9634af19de380e0796accaa70911fe83a6225efefee820a26b181f0a4cc37b5a9674d6a6e25","ssdeep":"384:LmIWkBSluKthxM6XMd/kfAygDxcHkNo5y5K4jN89vSPllbHVU71v8SQv3B2TCDuy:CIWkB2uKW6K/AAyWxcEyyfjN7PlpHG7w","tlshash":"74b2e084c6409d223eb3e30e7dfd165f673d83512efa0ef9f0a3841855985e8198e4aa","first_seen":"2025-09-23T16:01:15.911061Z","last_seen":"2025-11-28T15:34:02.051248Z","times_seen":3,"resource_available":false,"data":null}},"time_used":390,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":207,"receive":183,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/images/flags/english.png","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.028Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/images/flags/english.png HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:18 GMT\r\netag: \"1d6a-63f631814f030\"\r\naccept-ranges: bytes\r\ncontent-length: 7530\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kPGYLh99AeEONBOPmq0%2FIw7oRnh6bNpD9I5Ia%2BxVRBglED5Nj1iRXhSANKKVBg7Uo5AtRZnrjQagQbbw5soj13z6SsJ%2Bp2%2FJGL54E%2BNm\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: image/png\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b94d4c0b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7530,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 90 x 60, 8-bit/color RGB, non-interlaced","md5":"90fe46c75e15db5fa861f8366bf3965c","sha1":"51279d54ddf7c0a45ed0175ccf1f1b3fb1900c05","sha256":"0ee65175ac1263d75437519288b2ddf56c1aabbfa1ba93766df72403ec5e0df5","sha512":"c4ca12d2cc8395a0f3f28be161d71b1686f9bbbd47cdb4764091a54dc98d782a49c9a8a60da5030a204500c49baae657be2013312a90b3901580bf16289cc439","ssdeep":"96:zSNo7F5wknmWaOJNrAkpQ//uoeA6PHr8HgrrH4m25sPJ7bDTzau1gCQePLwgNHXt:zSi7FSknEDDqPL8Yj25KfesBrXTnxPP","tlshash":"87f16e147911ac506ac6bd86eafa16c74bb74b19cd81d0497dc5cdc34c602e9cca9ec9","first_seen":"2024-08-19T22:00:21.425364Z","last_seen":"2026-04-17T00:06:48.206169Z","times_seen":7,"resource_available":false,"data":null}},"time_used":589,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":589,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/images/slides/promote3.png","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.035Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/images/slides/promote3.png HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:27 GMT\r\netag: \"4568b-63f6318a387de\"\r\naccept-ranges: bytes\r\ncontent-length: 284299\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cE4tsiGgtxGJOYXO73THGXjAok2nwsrg2OOwk8V0oJZv9ZhTQOLqpAEvo0YgrxwDYlcX2gngRPKnJCAIlbKRErLEw7v7fO5N5u8phOgO\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: image/png\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b95d520b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":284299,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 460 x 380, 8-bit/color RGBA, non-interlaced","md5":"d1a9b6795c72eab882190c46dcc637d7","sha1":"56a8553546636c55e68796a726e19ab79496a180","sha256":"031b7770d4ee35a99d38b2ae900981f8cddd2649d15156fede9d076958a6012d","sha512":"18428900d435ad1d54ec585d7e79317e1c85ebbc96d46898f86ea9990f55c857fcb673a98e401a03924533da42ce255fa03f81f25b81a130a29143265a0834f3","ssdeep":"6144:0EhVMSPfP5W+lfFrEsQ48KAuPNaZS1yFT:fhD3rF4sF8KA4NaUi","tlshash":"d05423027e2e252b2b2afdc1c1b334d1de9aa95c03210ef61d7d321dbd6067a5eb0725","first_seen":"2025-09-23T16:01:15.928303Z","last_seen":"2025-09-23T16:01:15.928303Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1378,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":597,"receive":781,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/images/flags/french.png","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.030Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/images/flags/french.png HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:18 GMT\r\netag: \"da5-63f6318166b18\"\r\naccept-ranges: bytes\r\ncontent-length: 3493\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=s5SZleThtKy56KaDqxyTsPV922zzeHQsxcfuKvcurV9oBNzr%2FLVCjNUK%2BGX1lb6mcud3aJeC6giLSUqP5f2llZY%2BP99OBxaJKdNvfeL9\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: image/png\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b95d4e0b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3493,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 90 x 60, 8-bit/color RGB, non-interlaced","md5":"69b057be74c544f2a3be2895231a927a","sha1":"f9375f2e96163cb81c642bf11b5cb7be239d3437","sha256":"c15d5f07e42d334e64c360ac318b13af5531c7673c1c8beb1d5a34cddf461303","sha512":"9ae01fd2bd330da343a6a75e8d32f9033f3f6ab67ca78853c79fd8dec4f92866d8a3e33c907ecf8974075b55fc728c753c3486ea330b31e0fdb5038e3f5b50fd","ssdeep":"","tlshash":"1371e705fa126c205b5eee80fddd428b4bb75b90c7d290417cd9889248a12f9dc9ebd7","first_seen":"2024-08-19T22:00:21.414459Z","last_seen":"2026-04-17T00:06:48.141068Z","times_seen":6,"resource_available":false,"data":null}},"time_used":608,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":607,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/node_modules/sweetalert2/dist/sweetalert2.js?ver=","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.042Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/node_modules/sweetalert2/dist/sweetalert2.js?ver= HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:36 GMT\r\netag: \"22bcc-63f63192a1110-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncontent-length: 30191\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LimWSVhE8GtOMh8IowPItgoeF%2FwPp4hPRnIrob5wUZMsRktOBNgawVAMGog0WnTw3UU%2B6k%2Bm0dSf7ZduKGHDgayWXrWaOrzyInxq6iDn\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: text/javascript\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\ncf-ray: 983b41b95d570b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":142284,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (965)","md5":"2c09a292cbd5425aa758fad987306ca5","sha1":"9dfaf2f228dfb15937b9b1264c792e28fd181d36","sha256":"1b23ca86f78a391082b323f2024e50a6815fb2c700d81a985b197d84ae718913","sha512":"cb385c78a23dc9e5b7a778ddef7bbadda374b908ce710df7d7a583299d6d5aebcf58e97af8ed6e61f1b9c4638f93a49ad71d7a04dbde1fb894128e65a01ea49f","ssdeep":"1536:IEZRYSvu/88uYYCJHTOWb3qH9pIDBgbW9rp8qovU4iqEXlZRZyS9nFG0zNQIOt0O:z+S6w8hfnFdNmSgj","tlshash":"35d3845a2ef311e209ab64bc67cb5005ba355117b208cd94bdac9b501fdef3086f26ed","first_seen":"2025-09-23T16:01:15.930996Z","last_seen":"2026-05-17T22:20:18.406368Z","times_seen":7,"resource_available":true,"data":null}},"time_used":791,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":599,"receive":192,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/css/dashlite.css?ver=3.2.4","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:45.020Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/css/dashlite.css?ver=3.2.4 HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/login.php\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:45 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:10 GMT\r\netag: \"e93d1-63f6317994ff2-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JuzV9Tbp6d5Xwv5gGwXgDzxRQJwnmfL%2FUSpBm98hDplk9TNf4w9E8%2FbaDbX4N5bMgivmVnQTRIUDTxWPmKX6UaNBOO%2FhcVP1jC%2Bfv89A\"}]}\r\ncontent-type: text/css\r\ncache-control: max-age=14400\r\ncf-ray: 983b41b94d470b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":955345,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (602)","md5":"b37ac412ee0a695dc18ab2d56fc96c1c","sha1":"21e99038b981aa7d05c582d7299fd0cf05b4a57d","sha256":"ba079c767eb566609b8a46b103768e83232968f1a24f35ae2ca892148fd01c51","sha512":"f74639e831f582a861a3c4f00bae286a9b965e9c376c97ed367d167f4a6d42d48d3ec8781f4b844743bad646930506e1949552260b61959bf04d44a0beaa13a3","ssdeep":"12288:wXs2oQEUcXXaI63wL4+4M4iEKuQMv7dCnwd+Rbv:7","tlshash":"bc15b798faf52814356b82982596ffe4b72d40c1c91edd79f6e2311ccfc93d458a2ac8","first_seen":"2025-09-23T16:01:15.932355Z","last_seen":"2025-11-28T15:34:02.062765Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1211,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":630,"receive":581,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/fonts/Nioicon.ttf","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:46.362Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/fonts/Nioicon.ttf HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/assets/css/dashlite.css?ver=3.2.4\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:46 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:12 GMT\r\netag: \"64018-63f6317bdbc1c-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding,User-Agent\r\ncontent-encoding: gzip\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tETeOe5njwGUdbYJhLx5YnwZ4IZnK7Tt64Gp6mB4DLizquiAWgK6PKXOdSm7I%2Bxt%2B7ysbRrgb00rEz0WNKKg8lQJY5cCcvGD6YcTuuV8\"}]}\r\ncontent-type: font/ttf\r\ncache-control: max-age=14400\r\ncf-ray: 983b41c1cd9e0b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":409624,"size_decoded":0,"mime_type":"font/ttf","magic":"TrueType Font data, 11 tables, 1st \"OS/2\", 24 names, Macintosh","md5":"539ba027763fd004cc8f3b323fb4ddd9","sha1":"46029468a32eb2b5cdad4c5bb5747491a8dd603a","sha256":"d17c354d59a168527302926f8b42006ba9bcb8289c06cc154d7b850963e20816","sha512":"48603353e600198718ebd2745ce0ceaca6b4b0e3027b74295622f88cc95f6c716ee271cf6f124a7bc55c6db7b64d1ede88459fa928b683d4b623c873749517c0","ssdeep":"12288:Q1KJOeOV096/8DhdGig2VejVLvVPraLa1VV38x:4EDdQ2VejVLvVPr+OVV3e","tlshash":"75946b66566edfd8d4039bf7991290b3a8fcdc199e3dfa0a66840818f417d748dbcb08","first_seen":"2025-09-23T16:01:15.933693Z","last_seen":"2026-05-17T22:20:18.427263Z","times_seen":8,"resource_available":false,"data":null}},"time_used":1129,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":574,"receive":555,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"shop.apay24.asia/main/assets/fonts/Roboto-Medium.woff2","fqdn":"shop.apay24.asia","domain":"apay24.asia","tld":"asia"},"ip":{"addr":"172.67.149.122","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://shop.apay24.asia/main/login.php","date":"2025-09-23T16:00:46.524Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"apay24.asia","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 22 Sep 2025 10:53:28 GMT","end":"Sun, 21 Dec 2025 11:50:37 GMT"},"fingerprint":{"sha1":"B7:39:A7:47:BA:AB:E7:19:3B:88:A8:5A:90:15:A4:97:4C:78:68:A9","sha256":"47:48:6E:26:1E:A5:62:11:75:B7:C6:6A:A1:46:B2:38:B9:32:BD:F8:D5:D8:99:1F:34:88:7B:EB:FD:85:4E:5C"}}},"request":{"raw":"GET /main/assets/fonts/Roboto-Medium.woff2 HTTP/1.1\r\nHost: shop.apay24.asia\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://shop.apay24.asia/main/assets/css/dashlite.css?ver=3.2.4\r\nCookie: PHPSESSID=99lvq62c9a2hg1eh35bg3o0a9i\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 23 Sep 2025 16:00:46 GMT\r\nserver: cloudflare\r\nlast-modified: Mon, 22 Sep 2025 12:38:14 GMT\r\netag: \"104e8-63f6317dc11af\"\r\naccept-ranges: bytes\r\ncontent-length: 66792\r\nvary: User-Agent, accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=X0Eupbv5Jk7RPRtLbpKbheeKVZ1lLiVZDVKE4tFqXrLEJTjK4FO565SCzoGwtGPkTti%2FXCOfQPQIutaDy26zMPfWzuzlib8mE74ieffC\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-type: font/woff2\r\nage: 0\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\ncf-ray: 983b41c2cda70b61-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":66792,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 66792, version 1.0","md5":"50d01d3e6c994995bcaf829e63d53d1a","sha1":"c78884cb32e7b020971ffae746fe21d90502bcae","sha256":"998b049e731114e2fa35d65f23fc6e6e153249a4ef328912e3c7c49546e2d207","sha512":"9b8b97f7778e8a740de8be26d889fa93bf5984dc1e1dbc61bbe699f143186807da985e76f5352b9b13cd92b5c88aeeb344078e13f9e4b811ecc12f6ad5665c6f","ssdeep":"1536:Gx386A9UYEHdhGr1WuXc/ce3NV5rFE/2xEpmpFq8NVjd0yiPFsiQCqCaYl2G:GZ86qg4N947E2xIGZVpTEsOq/oz","tlshash":"2563023cf5c929a4c6d3215efe11f625b4d80af581518f0cdda90b096f7eec58b99413","first_seen":"2023-04-07T14:33:54Z","last_seen":"2026-05-28T21:09:33.608671Z","times_seen":3414,"resource_available":false,"data":null}},"time_used":843,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":445,"receive":398,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-09-23","alert":"Sinkholed","trigger":"shop.apay24.asia","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}