{"report_id":"a7dbd458-ceb7-4490-b360-13d393496d8c","version":6,"status":"done","tags":[],"date":"2025-01-09T23:16:57Z","url":{"schema":"https","addr":"kz.uwoadumeff.com/#U2FsdGVkX1/Y2j9IvRiOYQI9tna+l1jaU/t8cY6XAsc54bm/TUFY3z/mG2EEu0JmoXmeTt4ncXiBZsKUQyPp4JjHPobctNmF3SEeghyIA1M=","fqdn":"kz.uwoadumeff.com","domain":"uwoadumeff.com","tld":"com"},"ip":{"addr":"172.67.208.208","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"kz.uwoadumeff.com/#U2FsdGVkX1/Y2j9IvRiOYQI9tna+l1jaU/t8cY6XAsc54bm/TUFY3z/mG2EEu0JmoXmeTt4ncXiBZsKUQyPp4JjHPobctNmF3SEeghyIA1M=","fqdn":"kz.uwoadumeff.com","domain":"uwoadumeff.com","tld":"com"},"title":"..."},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2027-03-20T23:16:57Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":235,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2025-01-08T01:51:11.139584Z","alert_count":0,"request_count":1,"received_data":14988,"sent_data":439,"comment":"","tags":null,"fingerprints":null},{"fqdn":"kz.uwoadumeff.com","ip":{"addr":"104.21.23.42","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":76053,"sent_data":903,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2ca03ad87885ab983541092b87adb299","sha1":"1a17f60bf776a8c468a185c1e8e985c41a50dc27","sha256":"8e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762","sha512":"13c412bd66747822c6938926de1c52b0d98659b2ed48249471ec0340f416645ea9114f06953f1ae5f177db03a5d62f1fb5d321b2c4eb17f3a1c865b0a274dc5c","ssdeep":"768:J1Z4iiyfiD78x6l42SWRV4HC0o10LEnM9OT81agZnEpnS:vZYDc6lXJd1mZpZEdS","tlshash":"19231ac5a19c605152a774c40d7f704b7463352a070d8aacf668e9eeecfcaea9039d7c","size":48316,"data":"","first_seen":"2023-03-07T01:31:53Z","last_seen":"2026-04-04T01:19:38.92846Z","times_seen":149551,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kz.uwoadumeff.com/#U2FsdGVkX1/Y2j9IvRiOYQI9tna+l1jaU/t8cY6XAsc54bm/TUFY3z/mG2EEu0JmoXmeTt4ncXiBZsKUQyPp4JjHPobctNmF3SEeghyIA1M=","fqdn":"kz.uwoadumeff.com","domain":"uwoadumeff.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":true,"md5":"24e096ca3b80d6d91794c0cc0cf6dffd","sha1":"921a509791e784b577dd2549af4e85d2b9a288d9","sha256":"a5fc134e044cc315e59ca633da8aefc7a4b1cce1fa72ad1a831842f8af5fb50e","sha512":"f1f80f7f0776d3efa5a9e95503d65aed8c3dfa500c7ede61040e5ea676c195ff8e2a7b9cccd8ad58b4d495ab7a0fe161b4609d248a7334f5d28693792fffcb30","ssdeep":"1536:VwDZ1hT0uH0mfE/9K0a/5/7jdZLPwf5bEBxGYeXhJ:VwpAuUrFa/4BEBReXhJ","tlshash":"91737385b7c27d82124757bb772bb1e5e83a5ce87188088bf010bc98f5bea15f9e1531","size":73825,"data":"","first_seen":"2024-12-28T19:03:46.383475Z","last_seen":"2025-01-09T23:19:19.542532Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"572cb94037fffc2a0a53b465972e15f1","sha1":"0d679b041a7c1ca45cc99e2d229fc2b86762838d","sha256":"6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35","sha512":"f7c4db7986d362b58ff4b4646cdeb71992c0ce28949773c4471915f2cc8828329445777e228ef248f508f721a33dfea3d5694bc7ec18dc6c00134ee23155ff32","ssdeep":"","tlshash":"8290045c31005004c1773cd0501754d55030443330401d411d45d4444d7151c033d45c","size":34,"data":"","first_seen":"2023-04-11T21:16:40Z","last_seen":"2026-04-04T00:26:59.706758Z","times_seen":81163,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.25.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://kz.uwoadumeff.com/#U2FsdGVkX1/Y2j9IvRiOYQI9tna+l1jaU/t8cY6XAsc54bm/TUFY3z/mG2EEu0JmoXmeTt4ncXiBZsKUQyPp4JjHPobctNmF3SEeghyIA1M=","date":"2025-01-09T23:16:34.108Z","timestamp":1736464594108,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 26 Nov 2024 07:25:18 GMT","end":"Mon, 24 Feb 2025 07:25:17 GMT"},"fingerprint":{"sha1":"64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02","sha256":"E2:FD:99:E5:FF:2E:79:8A:23:2B:44:C0:93:30:22:99:44:F9:88:0A:8C:26:58:B1:13:F4:D5:05:08:36:E0:2F"}}},"request":{"raw":"GET /ajax/libs/crypto-js/4.1.1/crypto-js.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kz.uwoadumeff.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 09 Jan 2025 23:16:34 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 13972\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"61182885-3694\"\r\nlast-modified: Sat, 14 Aug 2021 20:33:09 GMT\r\ncf-cdnjs-via: cfworker/kv\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 1925801\r\nexpires: Tue, 30 Dec 2025 23:16:34 GMT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=EKrTrKwmvrPhHBvmgzaK6p7OhrgX5%2BQfmnpOPbiGceBoDkEVWdutgbcf4xzjvWqVoLWhLtyB%2Fs19CQUE7cY4FbWS8yvJkitWVpl8cXu%2FehCTXZ2AiSpo65mHOjMWS2dbfvUaQ4NB\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0.01,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nstrict-transport-security: max-age=15780000\r\nserver: cloudflare\r\ncf-ray: 8ff822c14d260b55-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":13972,"size_decoded":48316,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (48316), with no line terminators","md5":"2ca03ad87885ab983541092b87adb299","sha1":"1a17f60bf776a8c468a185c1e8e985c41a50dc27","sha256":"8e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762","sha512":"13c412bd66747822c6938926de1c52b0d98659b2ed48249471ec0340f416645ea9114f06953f1ae5f177db03a5d62f1fb5d321b2c4eb17f3a1c865b0a274dc5c","ssdeep":"768:J1Z4iiyfiD78x6l42SWRV4HC0o10LEnM9OT81agZnEpnS:vZYDc6lXJd1mZpZEdS","tlshash":"19231ac5a19c605152a774c40d7f704b7463352a070d8aacf668e9eeecfcaea9039d7c","first_seen":"2023-03-07T01:31:53Z","last_seen":"2026-04-04T01:19:38.92846Z","times_seen":149551,"resource_available":true,"data":null}},"time_used":48,"timings":{"blocked":18,"dns":0,"connect":1,"send":0,"wait":8,"receive":2,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kz.uwoadumeff.com/","fqdn":"kz.uwoadumeff.com","domain":"uwoadumeff.com","tld":"com"},"ip":{"addr":"104.21.23.42","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-01-09T23:16:33.345Z","timestamp":1736464593345,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uwoadumeff.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 02 Jan 2025 15:38:59 GMT","end":"Wed, 02 Apr 2025 16:37:19 GMT"},"fingerprint":{"sha1":"B4:6E:77:F2:F2:1A:15:06:18:E5:7B:05:B7:5A:53:6A:DF:49:18:4A","sha256":"34:7D:D1:D9:68:F3:66:72:BB:56:65:5D:8B:2B:FB:B6:FA:F5:20:E2:E5:18:0A:F1:D3:10:70:77:55:C3:7E:C1"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: kz.uwoadumeff.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 09 Jan 2025 23:16:33 GMT\r\ncontent-type: text/html\r\nlast-modified: Thu, 19 Dec 2024 19:01:29 GMT\r\nvary: Accept-Encoding\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=LQrjyJXk5H4MHNT805UaDf1p0fHKGxa0NoymwnDXOJhqR4SQq58yoAASs%2FqJTp%2Fn27Uez%2B11uSjcFG0lmUAml0%2BAq28W4oe3PMRwCdZ23miCe4h8kYnE5NFq1f9jVqOwTvMBKw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 8ff822bc8d7a569a-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=TCP\u0026rtt=5560\u0026min_rtt=485\u0026rtt_var=10179\u0026sent=7\u0026recv=11\u0026lost=0\u0026retrans=0\u0026sent_bytes=3284\u0026recv_bytes=1249\u0026delivery_rate=7541666\u0026cwnd=253\u0026unsent_bytes=0\u0026cid=bbbf3b0c70ea1d34\u0026ts=407\u0026x=0\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":74049,"size_decoded":74049,"mime_type":"text/html","magic":"JavaScript source, ASCII text, with very long lines (65342), with CRLF line terminators","md5":"043fee3bf09a040c80696d53e189583b","sha1":"be1de69ee1db37ef89b159a3751e55b5e1b0ea17","sha256":"d75045b2d0872dbb25f1daa7494e86da8c676c37319e35eabccdcb65d12d081f","sha512":"bb8dfab57678d2ba73c830bc4e267a98a9d8218b4522aa8d48aed2ab30d691165825d8f86f34f3c5e4ebea1d829ecbdb8d8c938a99c92b2ba74df249811049c1","ssdeep":"1536:/wDZ1hT0uH0mfE/9K0a/5/7jdZLPwf5bEBxGYeXhs:/wpAuUrFa/4BEBReXhs","tlshash":"64737385b7c27d82124757bb772bb1e5e83a5ce87188088bf010bc98f5bea15f9e1531","first_seen":"2024-12-28T19:03:46.379136Z","last_seen":"2025-01-09T23:19:19.539565Z","times_seen":10,"resource_available":false,"data":null}},"time_used":430,"timings":{"blocked":17,"dns":1,"connect":1,"send":0,"wait":391,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"kz.uwoadumeff.com/favicon.ico","fqdn":"kz.uwoadumeff.com","domain":"uwoadumeff.com","tld":"com"},"ip":{"addr":"104.21.23.42","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://kz.uwoadumeff.com/#U2FsdGVkX1/Y2j9IvRiOYQI9tna+l1jaU/t8cY6XAsc54bm/TUFY3z/mG2EEu0JmoXmeTt4ncXiBZsKUQyPp4JjHPobctNmF3SEeghyIA1M=","date":"2025-01-09T23:16:34.917Z","timestamp":1736464594917,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"uwoadumeff.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 02 Jan 2025 15:38:59 GMT","end":"Wed, 02 Apr 2025 16:37:19 GMT"},"fingerprint":{"sha1":"B4:6E:77:F2:F2:1A:15:06:18:E5:7B:05:B7:5A:53:6A:DF:49:18:4A","sha256":"34:7D:D1:D9:68:F3:66:72:BB:56:65:5D:8B:2B:FB:B6:FA:F5:20:E2:E5:18:0A:F1:D3:10:70:77:55:C3:7E:C1"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: kz.uwoadumeff.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://kz.uwoadumeff.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Thu, 09 Jan 2025 23:16:35 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\ncache-control: max-age=14400\r\ncf-cache-status: MISS\r\npriority: u=6,i=?0\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v4?s=UR2qeZk4ZLGhkTEYiGPj585RHzAjgmtVe9IhazoQsO6PKAPPRX7TWjGZd6bjef8CWIt6oM5bXD2tu8CjryCLNEunyTkMtxIDXOT187VbBXaeavD3viTi3zVfF%2B4vAtz71hJ2%2Bw%3D%3D\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 8ff822c63dccb524-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfL4;desc=\"?proto=QUIC\u0026rtt=3748\u0026min_rtt=1458\u0026rtt_var=2182\u0026sent=12\u0026recv=8\u0026lost=0\u0026retrans=0\u0026sent_bytes=4111\u0026recv_bytes=1202\u0026delivery_rate=407201\u0026cwnd=12000\u0026unsent_bytes=0\u0026cid=f50c2c3602553507\u0026ts=1541\u0026x=1\", cfExtPri, cfHdrFlush;dur=0\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":279,"size_decoded":279,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text, with no line terminators","md5":"39c1428a1245039d82f3bcfff7bcdded","sha1":"80ee6929f8090fe698d1752fed8328c4ebc12965","sha256":"581d56a7dfa2384a96d8eb6f308c5444f38f3a6ba145d9825cb8c1fb345614d7","sha512":"34c3ec9558f4709b152e69dcb8a05be37559c49f45941f4e68b1723cf8644430ba0dae38d5ac12f371e0cc606562b674f2915dad93abe361aefba8d9285b1c1f","ssdeep":"","tlshash":"b8d02baed052a28b44a118e037c21191164d83e2752b46f87ec9d94f75a813dcd67dc8","first_seen":"2025-01-09T23:17:01.119071Z","last_seen":"2025-01-09T23:17:01.119071Z","times_seen":1,"resource_available":false,"data":null}},"time_used":388,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":388,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}