{"report_id":"a3fa31d1-6c2a-4864-8315-5eb09bd0c24f","version":6,"status":"done","tags":[],"date":"2026-06-02T06:03:32Z","url":{"schema":"http","addr":"webcf.bitdriverupdater.com/bitdrvupdt/instlr/ofr/langs/english_promoapps.xml","fqdn":"webcf.bitdriverupdater.com","domain":"bitdriverupdater.com","tld":"com"},"ip":{"addr":"13.249.8.10","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"webcf.bitdriverupdater.com/bitdrvupdt/instlr/ofr/langs/english_promoapps.xml","fqdn":"webcf.bitdriverupdater.com","domain":"bitdriverupdater.com","tld":"com"},"title":"webcf.bitdriverupdater.com/bitdrvupdt/instlr/ofr/langs/english_promoapps.xml","dom":{"size":23651,"mime_type":"text/plain; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (390)","md5":"2384b8fab3c20265cbdbe67af6930bca","sha1":"4014659b196dfa330a92824f29368a6033c0de35","sha256":"78b3322d2b1a9581fcb4f85785e51e251deee0597fefc947c49654711d73ccf5","sha512":"b40941081114ae15e72eba45aad53d4d8d6effc5ebec26d2a47e9efbc2e5821280b4f32f3dc52a167a8f0f1f0cec2303bdec71e8f5a16b8cb86ee1f051cdad98","ssdeep":"384:eoRB3eqT9LjBBkAk2kqkykKkEkhkdk4kkk/kbkCkxkFkBkFkkkYkwkLBtCBhCBBm:eoR8Cp4Ik46FIk4H","tlshash":"0db2be4d6e0a2dcf1bed60ac8ce19e0453ef6f919ed04825d07f93d1b2129c7627a1b6","dom_hash":"domhashdf3c95a17b051f594decf4f7caccce4b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"webcf.bitdriverupdater.com/bitdrvupdt/instlr/ofr/langs/english_promoapps.xml","fqdn":"webcf.bitdriverupdater.com","domain":"bitdriverupdater.com","tld":"com"},"ip":{"addr":"13.249.8.10","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-07T06:03:32Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"webcf.bitdriverupdater.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"webcf.bitdriverupdater.com","ip":{"addr":"52.84.50.32","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2019-10-14","domain_rank":4111593,"first_seen":"2020-07-07T05:23:23Z","last_seen":"2026-06-02T06:01:48.767266Z","alert_count":2,"request_count":2,"received_data":25400,"sent_data":1052,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"webcf.bitdriverupdater.com/favicon.ico","fqdn":"webcf.bitdriverupdater.com","domain":"bitdriverupdater.com","tld":"com"},"ip":{"addr":"52.84.50.32","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://webcf.bitdriverupdater.com/bitdrvupdt/instlr/ofr/langs/english_promoapps.xml","date":"2026-06-02T06:03:10.740Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bitgamebooster.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 05 Nov 2025 00:00:00 GMT","end":"Fri, 04 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"4B:F2:52:4A:AE:85:B7:4D:23:F7:0A:4D:25:C0:84:0E:78:C0:74:C3","sha256":"3E:CD:F8:32:A4:E2:28:50:2A:71:80:DA:CF:B5:E7:11:16:0E:D8:AE:9C:49:07:42:2D:B0:B6:42:6C:5D:4E:86"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: webcf.bitdriverupdater.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://webcf.bitdriverupdater.com/bitdrvupdt/instlr/ofr/langs/english_promoapps.xml\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ncontent-type: application/xml\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver: AmazonS3\r\ndate: Tue, 02 Jun 2026 06:03:10 GMT\r\nx-cache: Error from cloudfront\r\nvia: 1.1 652549e0dcae9775148cb207792b2a40.cloudfront.net (CloudFront)\r\nx-amz-cf-id: XViHNVjseLVhHHd8ixIQSOeerGOmoxtUoKe8NDelX3HN8z1d5o4jCQ==\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":282,"size_decoded":0,"mime_type":"application/xml","magic":"XML 1.0 document, ASCII text","md5":"2de85f8c82277678e772b92774a6f0aa","sha1":"ef40164bc2c54ec817c1fd46beb08dc889fdc8ba","sha256":"8f62713c7a1a95a26b13544f07fa94e0082e25e4beba87ee4ea43288ecff1c7b","sha512":"da2747c8ff15a041e958c39a9dff6b687958d7220f7f37c92f8563463fd39bf6490f0f8457b7294df0e6ccf3b32526e6b8f0e511c868ab148a4b54b91630cf69","ssdeep":"","tlshash":"c9d02b366320640f87c4002f9eaff312afb9e174b2e05270ae918ec31f8a4d66d63600","first_seen":"2026-06-02T06:03:33.346271Z","last_seen":"2026-06-02T06:03:33.346271Z","times_seen":1,"resource_available":false,"data":null}},"time_used":325,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":325,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"webcf.bitdriverupdater.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"webcf.bitdriverupdater.com/bitdrvupdt/instlr/ofr/langs/english_promoapps.xml","fqdn":"webcf.bitdriverupdater.com","domain":"bitdriverupdater.com","tld":"com"},"ip":{"addr":"52.84.50.32","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-02T06:03:10.416Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bitgamebooster.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 05 Nov 2025 00:00:00 GMT","end":"Fri, 04 Dec 2026 23:59:59 GMT"},"fingerprint":{"sha1":"4B:F2:52:4A:AE:85:B7:4D:23:F7:0A:4D:25:C0:84:0E:78:C0:74:C3","sha256":"3E:CD:F8:32:A4:E2:28:50:2A:71:80:DA:CF:B5:E7:11:16:0E:D8:AE:9C:49:07:42:2D:B0:B6:42:6C:5D:4E:86"}}},"request":{"raw":"GET /bitdrvupdt/instlr/ofr/langs/english_promoapps.xml HTTP/1.1\r\nHost: webcf.bitdriverupdater.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/xml\r\ncontent-length: 24256\r\ndate: Tue, 02 Jun 2026 03:59:43 GMT\r\nlast-modified: Fri, 04 Jul 2025 08:07:59 GMT\r\netag: \"10cd687df4e297761f065d6d54dc0de1\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 2f3a70deb5812eb0e48215ada7b72404.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P3\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: _zM6bBVeFA8HncrFJ208tXdwU0wrhmUJ_TmY628pfuXcg6SidE-m9g==\r\nage: 7408\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":24256,"size_decoded":0,"mime_type":"text/xml","magic":"HTML document, ASCII text, with very long lines (390), with CRLF line terminators","md5":"10cd687df4e297761f065d6d54dc0de1","sha1":"c8e26f733be570cdf8f9b3b16b2e8f2b4f86d37a","sha256":"b85bcbedb7562ff9f20a1b6454f8797442438928c1e91b97b26fa1334fa90041","sha512":"956ea1c951e0aef72a727e18d33702895344ed128cd81ddb9eaec0eed3921c4de9479c8d0a6690dd27cf79338af5983053e76f527c60f3d59f0ec43077c7db37","ssdeep":"384:evR7K3P/Kxm9SkQk0kQkCkQkKkbkPkmkakpk9k0k3kTkvkrkakWkWkrBTeB/eBj2:evRs/JB+uCaO+uCe","tlshash":"20b2c04d7d8a22cf1bed509f8cb19a0413afef91aed10426d07a93f372135d622761b6","first_seen":"2026-06-02T06:03:33.347253Z","last_seen":"2026-06-02T06:03:33.347253Z","times_seen":1,"resource_available":true,"data":null}},"time_used":129,"timings":{"blocked":53,"dns":42,"connect":1,"send":0,"wait":23,"receive":1,"ssl":7},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-06-02","alert":"Sinkholed","trigger":"webcf.bitdriverupdater.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}