{"report_id":"ba621c99-55d1-484c-a420-507a98e0fd8e","version":0,"status":"done","tags":["societe_generale","financial","phishing"],"date":"2026-06-20T12:14:56Z","url":{"schema":"http","addr":"radiorsj.be/baj/753378f575002af/login.php","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":0,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"final":{"url":{"schema":"https","addr":"radiorsj.be/baj/753378f575002af/login.php","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"title":"Société Générale | Connexion","dom":{"size":15920,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (5297)","md5":"ab62b8eea8a2ee00042942601d6f89d0","sha1":"2f421bd18623c8ab05e8f211931a4eafafa1369c","sha256":"48eea222592fac6fe2920dbc76e023565ecae1aa085b5c2f5853fcd412e93518","sha512":"d4c20541b816f95207b8c3008636ee5415cc9e6dea396efcbde221a73dbef6ccf83acd5d15488cbc7b218bbd3a2802ab656a03539ad3a4c89574a6277ce4fa1d","ssdeep":"96:jUAOph8o/66EeckxBtMDz05zBfgvw5cd5usH7lcG6S8LlqC7lcTw2SsphZNoubc4:nOph/kb05FfOw5c9aG6SOaU38f","tlshash":"6262a513c4e6119b50164a409af42e3c7a76f703d76a064973ac0a562fcbddaa4c33ba","dom_hash":"domhash30c9523cccc73f64d2eb3eb5867512ac","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"radiorsj.be/baj/753378f575002af/login.php","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":0,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-25T12:14:56Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]},"summary":[{"fqdn":"radiorsj.be","ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"domain_registered":"2012-03-31","domain_rank":0,"first_seen":"2026-06-19T22:21:27.038397Z","last_seen":"2026-06-19T22:21:27.038397Z","alert_count":78,"request_count":26,"received_data":1587115,"sent_data":14619,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"PHP:8.5.6","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Popper","description":"Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.","website":"https://popper.js.org","common_platform_enumeration":"","icon":"Popper.svg","categories":["Miscellaneous"]},{"name":"Font Awesome","description":"Font Awesome is a font and icon toolkit based on CSS and Less.","website":"https://fontawesome.com/","common_platform_enumeration":"","icon":"Font Awesome.svg","categories":["Font scripts"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"radiorsj.be/baj/753378f575002af/login.php","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"introduction_type":"scriptElement","is_inline":true,"md5":"b713c13f245d5a67ed8f66aed7958267","sha1":"55af1ca64b93d86c0fcdb58f596795b34b810950","sha256":"d67b753b771f2bedb17e10cc5f1cfdf67a1ce062adbe82c644cee80e9f60532e","sha512":"e795d86f049360fa83001815a313cfb87ccd073cc6a6172ec59bb2bfbb1b983f13f408d49e2ac5583322ec53cfbd6d640167eea6a57401695c9eb828fc25d823","ssdeep":"","tlshash":"47d012bd1452d15ebc722f34ecd155552561ef929cd1ffc83a3c50c37bd0012a15a2d5","size":231,"data":"","first_seen":"2026-06-19T07:13:32.37196Z","last_seen":"2026-06-20T17:33:25.20014Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"radiorsj.be/baj/753378f575002af/login.php","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"introduction_type":"scriptElement","is_inline":true,"md5":"a4dd22554f7017aa52e4fb1f383ba01b","sha1":"5cf903d09c7fefe841fdd8f9c411d5752f0360ba","sha256":"af09d8b726240de95b3846f14d1de0540caa7c0e3c215fe016ae7c2e3656f7ca","sha512":"de8e955618c3b7e09840fccef2f6a766c756838568897d44fa68186ce4033f6b9ba285ea705acc0c117b299230844c2c2c877b6cbebed97dc92a913488f0ceee","ssdeep":"","tlshash":"44b0223223388e008002f0a0b2f0eb003b8b8220fae2b80030cc0ac88f03f0ce00f030","size":124,"data":"","first_seen":"2026-06-19T07:13:32.373098Z","last_seen":"2026-06-20T17:33:25.200708Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/js/jquery.min.js","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"introduction_type":"scriptElement","is_inline":false,"md5":"2f772fed444d5489079f275bd01e26cc","sha1":"a8927ac2830b2fdd4a729eb0eb7f80923539ceb9","sha256":"2b381363dda049f2d49a59037b228bc865d51ffb977c8f5c3547d5c28de48e3a","sha512":"81f3b4d35aaa98af19a4d31ee5399d49e0f70ce52aadefffbf42c6c4489d9d50a49450eec8e9139a009da82b57bf677665a926d5ae913dfc4c74baeec186c422","ssdeep":"1536:jTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPmw:jgZm0H5HO5+gCKWZyPmHQ47GKc","tlshash":"8f8319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","size":88145,"data":"","first_seen":"2023-03-07T01:02:42Z","last_seen":"2026-06-20T17:33:25.187523Z","times_seen":7070,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/js/popper.min.js","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"introduction_type":"scriptElement","is_inline":false,"md5":"5644e6835941af44dcb5cead916c2b79","sha1":"6eb1840d55338895ce6ecc3eab56132b1d152b93","sha256":"315ac5479007d2e864a4b51f505fd0785ebbbe931a6b511467fa49504a082c58","sha512":"474fde416d70e43cf6ac2d21f3b1ab49d70be355b7424bb500bc13161c6e7830b09ff3171f6ebae27d966cfaacab84515f1de7ceef603a748a5502d8941c4669","ssdeep":"384:2Yn0vf4wzTC9nNbR1PTM4CrBEQxkxpOxvYLmD75zfC5vIfg3rzGp/TidOgHhXjEO:Z0vAwzTC/nM4BxpOxv/D7pC5vfzy/Tij","tlshash":"8992a3dc3294b0a647ab91a7a07f960eb1335875610e9410f19df2e97c30ef9a13bc79","size":20340,"data":"","first_seen":"2023-03-07T01:02:42Z","last_seen":"2026-06-20T17:25:36.262012Z","times_seen":2701,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/js/bootstrap.min.js","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"introduction_type":"scriptElement","is_inline":false,"md5":"0f9ea8d6bb66dbed6e0966f9da35b7fd","sha1":"8095a33f75ca53aa5409b8bf00ea30372755092d","sha256":"306ab8dd287ef041231a510b7e4c027a11e28b20c3408a9185d895c091dc72a4","sha512":"b3938742cf578e02cc239ac8ba7d47f0cb059f87f45a6672ebf006083c45714e19378b16faa3e8a775c2418d572860bee233c2c9ece628cbf30690b1967d99ec","ssdeep":"768:ftnphx1HVSaigVo47yTVKHhtUzOHdqiNWsfdocvCXspq6zR9PW+xKw:fxlpUzP1qks5R9Kw","tlshash":"0243c64a7214787246cfa56a817f060bb3377889e80a816cb86d98dd1f7cd493267f7c","size":59058,"data":"","first_seen":"2023-03-07T01:33:40Z","last_seen":"2026-06-20T17:33:25.191636Z","times_seen":622,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/js/fontawesome.min.js","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"introduction_type":"scriptElement","is_inline":false,"md5":"a6756b0b8637e62f56d9d794b154ca12","sha1":"5cd7e758e41375d85cef812d4578d5cd9b949ea7","sha256":"21bd54c766f0a1385f24f0b9a074e83881d82288d9d31bab0e3076721121f52e","sha512":"86b78c20a80c5f0fcb7f2b1f81fa18394ddf0d018c8d6b04a279ca7c374816b9936389402289c509c86cb7b16f92df95d99331cbaee5caed3f44a35a055c24de","ssdeep":"6144:d8omSKkxEHjUhDV6MWkc4bp2Dnio/NULootRtKz+/DYUmbgTJ95SpZbJ18wDKJI3:RKkiV94bNtRweYUm00z","tlshash":"3735d568d760a3fc9dc687b5c6212074798f91be71a0932892bcc6f0b2975dcd6c9cc9","size":1061198,"data":"","first_seen":"2023-03-07T01:02:42Z","last_seen":"2026-06-20T17:33:25.199585Z","times_seen":1490,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/js/main.js","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"introduction_type":"scriptElement","is_inline":false,"md5":"3c765d64a5a21ed6c1f4988c3461a279","sha1":"7f3b3f26cc8aa8f17287b48846e18cb0212d39a9","sha256":"b1af423bf7c51116e2ceede029ba6f6cd3fac8540650644cd9ea720bceecf903","sha512":"e2d90e62511334899edad2903640578bb769313bfaa6e2b206fc31f68ccf8e5c53e841e213c46d0da5d669eca69355e41d7435a56442e893073b6d2771503ee8","ssdeep":"48:6GrIFug/6clFug/kUb+GkHR9Dxvl43pws+9+CDHu6DMMhzQhtANhrdh1KTxgueCd:6Gxg/Ag/ngeKwOzH6Awd1mRQDk2ktI","tlshash":"bdb1e649b5592aa958b3337a5bb6c010ff3a007342069352fcac1dc86fb0a1197b5fec","size":5119,"data":"","first_seen":"2023-03-07T21:35:04Z","last_seen":"2026-06-20T17:33:25.188629Z","times_seen":320,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"radiorsj.be/baj/753378f575002af/login.php","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"introduction_type":"scriptElement","is_inline":true,"md5":"b713c13f245d5a67ed8f66aed7958267","sha1":"55af1ca64b93d86c0fcdb58f596795b34b810950","sha256":"d67b753b771f2bedb17e10cc5f1cfdf67a1ce062adbe82c644cee80e9f60532e","sha512":"e795d86f049360fa83001815a313cfb87ccd073cc6a6172ec59bb2bfbb1b983f13f408d49e2ac5583322ec53cfbd6d640167eea6a57401695c9eb828fc25d823","ssdeep":"","tlshash":"47d012bd1452d15ebc722f34ecd155552561ef929cd1ffc83a3c50c37bd0012a15a2d5","size":231,"data":"","first_seen":"2026-06-19T07:13:32.37196Z","last_seen":"2026-06-20T17:33:25.20014Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"radiorsj.be/baj/753378f575002af/login.php","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"introduction_type":"scriptElement","is_inline":true,"md5":"a4dd22554f7017aa52e4fb1f383ba01b","sha1":"5cf903d09c7fefe841fdd8f9c411d5752f0360ba","sha256":"af09d8b726240de95b3846f14d1de0540caa7c0e3c215fe016ae7c2e3656f7ca","sha512":"de8e955618c3b7e09840fccef2f6a766c756838568897d44fa68186ce4033f6b9ba285ea705acc0c117b299230844c2c2c877b6cbebed97dc92a913488f0ceee","ssdeep":"","tlshash":"44b0223223388e008002f0a0b2f0eb003b8b8220fae2b80030cc0ac88f03f0ce00f030","size":124,"data":"","first_seen":"2026-06-19T07:13:32.373098Z","last_seen":"2026-06-20T17:33:25.200708Z","times_seen":65,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/footer-links.jpg","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.044Z","timestamp":1781957667044,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/footer-links.jpg HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"20ba-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 8378\r\ncontent-type: image/jpeg\r\nx-varnish: 35508758112\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":8378,"size_decoded":8678,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2019:11:08 21:40:28], baseline, precision 8, 713x16, components 3","md5":"12962121b758a6679970b22c02e978a2","sha1":"c8af650f6bcefbc374ea21ddf2e54ecd67c8811a","sha256":"f6f7e0611ba3d6ba2268c51b20205b322d51d1cee76bdd6911b49f1d12b4f05a","sha512":"dbdb3450a357c666bd083082af07bc06ca4e7697c27839c71a6f5127b26cee3e5a155159e66c88dbb7066a8739eb4bd3c634d2bb2ef30354076154e0c04ca8c3","ssdeep":"192:zuM15oQddpWm0dFR6ChfbWbTyELjSvtvXO/Jr3kV5qFTe:zuMnuPPHgKEvSVvGJr0V8FTe","tlshash":"0302bf148b3188cc7e7264758f703fb8bbf580092895ae33d9c96841a729940aa10fcc","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.185789Z","times_seen":347,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/css/bootstrap.min.css","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.001Z","timestamp":1781957667001,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/css/bootstrap.min.css HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"2606e-65476a470e480-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 23238\r\ncontent-type: text/css\r\nx-varnish: 35508758092\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":155758,"size_decoded":23590,"mime_type":"text/css","magic":"ASCII text, with very long lines (65324)","md5":"a15c2ac3234aa8f6064ef9c1f7383c37","sha1":"6e10354828454898fda80f55f3decb347fd9ed21","sha256":"60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36","sha512":"b435cf71a9ae66c59677a3ac285c87ea702a87f32367fe5893cf13e68f9a31fca0a8d14f6a7d692f23c5027751ce63961ca4fe8d20f35a926ff24ae3eb1d4b30","ssdeep":"1536:b/xImT+IcCQYYDnDEBi83NcuSEk/ekX/uKiq3SYiLENM6HN26F:b/Riz7G3q3SYiLENM6HN26F","tlshash":"68e386a6f5a0312de4a7c61964d0bafe156f8145d7220bfbf8273b7447892c70a63e4c","first_seen":"2023-04-05T08:00:04Z","last_seen":"2026-06-20T17:33:25.191081Z","times_seen":41936,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/css/fonts.css","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.005Z","timestamp":1781957667005,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/css/fonts.css HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"f7c-65476a470e480-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 581\r\ncontent-type: text/css\r\nx-varnish: 35508758094\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":3964,"size_decoded":929,"mime_type":"text/css","magic":"ASCII text, with CRLF line terminators","md5":"9c3ac45a553a1fe95dff0800bb14f537","sha1":"2fd28f4a09493721ab15802c8c228a62278c4826","sha256":"4b0b0147f36e895fe8bf08b7e44d2d68078d34ff6fd9d2763c7c6800827544b4","sha512":"99a31fabfc1f90f2dbfde3737384da8cc607cc0042af7ac94b43428a50ef635d743132e3eb25ed40c3f9e6000fc108c9d8c15f49462afc87033f528f73ce700a","ssdeep":"","tlshash":"4a813b4287c639334b741c5bb3fa5e505f1d580a30188463f72c68a5eee7a58b2e4b5e","first_seen":"2025-08-29T12:10:16.22622Z","last_seen":"2026-06-20T17:33:25.193869Z","times_seen":63,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/logo2.jpg","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.032Z","timestamp":1781957667032,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/logo2.jpg HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"4ea-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 1258\r\ncontent-type: image/jpeg\r\nx-varnish: 35508758103\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":1258,"size_decoded":1557,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2019:11:09 02:50:21], baseline, precision 8, 30x30, components 3","md5":"faae31dc56abb70d92d5802d5397ecfd","sha1":"20ea10febe43d77f015205993a7941dc49ac6d57","sha256":"3dc3d4f09a6caa938a754adf03cb9f7661ebffa085a55de8f04d2b52e1e5e46b","sha512":"d582f4b10d5cbf0726d8e2e4464d074b741df66783287ff20df31cfaea346e6940960b24aaa4969b6249b5dd6743c9bf28e8226be1c1b87ed61a90c2645e49ab","ssdeep":"","tlshash":"d121a7189b0222c1fc7ac9b981755f91e1eacfd13aa44a16bdf49850ced0998886ca8c","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.186399Z","times_seen":452,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/valider.png","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.034Z","timestamp":1781957667034,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/valider.png HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"710-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 1808\r\ncontent-type: image/png\r\nx-varnish: 35508758105\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1808,"size_decoded":2106,"mime_type":"image/png","magic":"PNG image data, 230 x 44, 8-bit/color RGB, non-interlaced","md5":"25513691f92b8ccb0190e5c2dfbb48e9","sha1":"d5251fab777fe48e33cd5fdd59467b7a0af7acd7","sha256":"23882f29cd743d1e0058ac22d2a791196952dab003f83df83d186e94b175119d","sha512":"ce33f04c2bea924bad6b2300589b29316bab42d54ea5436ac6fcd063ecbe54d7a42e4f68495404d2e4060fe027a6d35ece24d2e95887e611532f673a87647543","ssdeep":"","tlshash":"0831d78314527caad6cc687fe4ae02fe4b7d55e47c4363274a34086e52b88f746932e2","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.198884Z","times_seen":488,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/footer-info.png","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.037Z","timestamp":1781957667037,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/footer-info.png HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"1da8-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 7592\r\ncontent-type: image/png\r\nx-varnish: 35508758108\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":7592,"size_decoded":7891,"mime_type":"image/png","magic":"PNG image data, 792 x 30, 8-bit/color RGB, non-interlaced","md5":"b4dd3961b8377bae8ba5024cfe80be66","sha1":"9b36d135212fc15883cc080feb1ffc1be31690e2","sha256":"95d316972cfd6654daf6d407fb1334f4f7aff938e389b010291d241d8d57ad4f","sha512":"d27a049a2271a796e803f64c361363d64a5c8f308ade15d2bad75fcca3f6bf6063aa9d0753646e5e4066fa2f3f0a1abfeae1235723ec697cd9739cf45b12021f","ssdeep":"192:bAZhcVv+vcx3/G2tcET/CoN8TRANrV4oI6reY:bWDcx3O2tnoRAtVnJt","tlshash":"e4f19f35832848e07958a51b053b8282867298efc3badf9f5a1fd4171bb1a713830e94","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.189616Z","times_seen":332,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/css/helpers.css","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.003Z","timestamp":1781957667003,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/css/helpers.css HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"a318-65476a470e480-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 4669\r\ncontent-type: text/css\r\nx-varnish: 35508758093\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":41752,"size_decoded":5019,"mime_type":"text/css","magic":"ASCII text, with very long lines (41750), with CRLF line terminators","md5":"fd877f138d23d5a790645eb95167aec3","sha1":"ee2f01ca01c5f7e6f674ad79a9fea30f78a66f2c","sha256":"f839760d1621714efedeb3eb08b25e619812dcc33d77aceb0daf405ac727a765","sha512":"b3e5294bb436bfd5af5ddfa93a47af02d679de5bbe15ac4c73c7484a4f1da360ceea55ca0039c5724f22ebad944dc41a3cac3f4253b050f24dc6ec33f03fe559","ssdeep":"384:g8xTEBmqsHWJo+Fl9feef03Fvn6cxwkqsZ4JayZkQqLZNPdP/s26Olk9KIYRQ4TY:LOFsOYkcbQcxre9r0QTVcI","tlshash":"d51329c7fad514d8a11b4252c6823bfcfdfb1814136aaefb91167b22db046fb4a1451c","first_seen":"2023-04-05T06:17:06Z","last_seen":"2026-06-20T17:33:25.18696Z","times_seen":1956,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/js/popper.min.js","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.015Z","timestamp":1781957667015,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/js/popper.min.js HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"4f74-65476a470e480-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 7243\r\ncontent-type: text/javascript\r\nx-varnish: 35508758097\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":20340,"size_decoded":7600,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (20164), with CRLF line terminators","md5":"5644e6835941af44dcb5cead916c2b79","sha1":"6eb1840d55338895ce6ecc3eab56132b1d152b93","sha256":"315ac5479007d2e864a4b51f505fd0785ebbbe931a6b511467fa49504a082c58","sha512":"474fde416d70e43cf6ac2d21f3b1ab49d70be355b7424bb500bc13161c6e7830b09ff3171f6ebae27d966cfaacab84515f1de7ceef603a748a5502d8941c4669","ssdeep":"384:2Yn0vf4wzTC9nNbR1PTM4CrBEQxkxpOxvYLmD75zfC5vIfg3rzGp/TidOgHhXjEO:Z0vAwzTC/nM4BxpOxv/D7pC5vfzy/Tij","tlshash":"8992a3dc3294b0a647ab91a7a07f960eb1335875610e9410f19df2e97c30ef9a13bc79","first_seen":"2023-03-07T01:02:42Z","last_seen":"2026-06-20T17:25:36.262012Z","times_seen":2701,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/js/fontawesome.min.js","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.019Z","timestamp":1781957667019,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/js/fontawesome.min.js HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"10314e-65476a470e480-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-type: text/javascript\r\nx-varnish: 35508758099\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":1061198,"size_decoded":387528,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65347), with CRLF line terminators","md5":"f6e3241cca96efbdaccf09906c5171f6","sha1":"d5d38b26a57aedb2b72684e91d57ffbc7526842e","sha256":"8e165114b77bbd5cd34a9ec9ac46e94991ec5f68c81ce48511ca443e64a9c0cb","sha512":"5b2a427abfc2022d54ceddb171f701c9ef48220df6fa62e1617861aae48986f55628689d917e158827a87290f747aa8be99a8c86adb0ce98f9201ce72a58395b","ssdeep":"6144:d8omSKkxEHjUhDV6MWkc4bp2Dnio/NULootRtKz+/DYUmbgTJ95SpZbJ18wDKJIX:RKkiV94bNtRweYUm00D","tlshash":"a025d568d760a3fc9dc687b5c6212074798f91be71a0932892bcc6f0b2675dcd6c9cc9","first_seen":"2025-07-28T17:26:59.051121Z","last_seen":"2026-06-20T17:33:25.18809Z","times_seen":90,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":39,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/js/main.js","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.021Z","timestamp":1781957667021,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/js/main.js HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"13ff-65476a470e480-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1220\r\ncontent-type: text/javascript\r\nx-varnish: 35508758100\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":5119,"size_decoded":1577,"mime_type":"text/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators","md5":"3c765d64a5a21ed6c1f4988c3461a279","sha1":"7f3b3f26cc8aa8f17287b48846e18cb0212d39a9","sha256":"b1af423bf7c51116e2ceede029ba6f6cd3fac8540650644cd9ea720bceecf903","sha512":"e2d90e62511334899edad2903640578bb769313bfaa6e2b206fc31f68ccf8e5c53e841e213c46d0da5d669eca69355e41d7435a56442e893073b6d2771503ee8","ssdeep":"48:6GrIFug/6clFug/kUb+GkHR9Dxvl43pws+9+CDHu6DMMhzQhtANhrdh1KTxgueCd:6Gxg/Ag/ngeKwOzH6Awd1mRQDk2ktI","tlshash":"bdb1e649b5592aa958b3337a5bb6c010ff3a007342069352fcac1dc86fb0a1197b5fec","first_seen":"2023-03-07T21:35:04Z","last_seen":"2026-06-20T17:33:25.188629Z","times_seen":320,"resource_available":true,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/logo.png","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.028Z","timestamp":1781957667028,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/logo.png HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"9b7-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 2487\r\ncontent-type: image/png\r\nx-varnish: 35508758101\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":2487,"size_decoded":2785,"mime_type":"image/png","magic":"PNG image data, 192 x 26, 8-bit/color RGB, non-interlaced","md5":"07d389f224c55f59359aa8ab746a31d1","sha1":"ff3281d7db9e03ecba345c2b4b57d617dfd11926","sha256":"19b11e9d230e5fc6e11924e8c07f604d7884a4107794810bc70eec129b915795","sha512":"6c34bfd524392684ae9cdce48ddb92e7af953c865cfc7af0adeb2d9cea617112c7921f0863ee8b8800e632433c10395673f02bec4c5150601fdcad5d4aa1355a","ssdeep":"","tlshash":"d2516fd5a34c8d21ff9125fb4e85c16974d166f89b095408330a922235dfc5e4f9e5b3","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.197204Z","times_seen":452,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/footer-links2.png","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.045Z","timestamp":1781957667045,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/footer-links2.png HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"1e55-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 7765\r\ncontent-type: image/png\r\nx-varnish: 35508758113\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":7765,"size_decoded":8064,"mime_type":"image/png","magic":"PNG image data, 143 x 193, 8-bit/color RGB, non-interlaced","md5":"73d8f36e38c0e2bf8b369cfd72f6f8f1","sha1":"5100afd98867c52d7c01fb6cbaa50a8af9476e62","sha256":"7c3bdc670b04048dc2d7516878af352dcc5d2a377e384c6c8c183a36133ca076","sha512":"2ec1546bc6d2b304cbf3aab1264a67ca66493a6f26e273987337d9895ad9858731f7e8e6b0907ca45333054c304a14fda63779eff0b966981ed34e454e70f490","ssdeep":"192:zduI+a5tohtkmyZuUyCuA5LDFNl41NBaP43s1:zd1+CEtkmOruAx21NBh3+","tlshash":"2af19f646fb8c68e55079e1d9afdc098b8d0014ebb905ed0ba4a3d504b6bf8cf0e3764","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.19277Z","times_seen":332,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/favicon.ico","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.241Z","timestamp":1781957667241,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/favicon.ico HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"13e-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 318\r\ncontent-type: image/x-icon\r\nx-varnish: 35508758114\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":318,"size_decoded":618,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 16 colors","md5":"ca10c09aeaf43460d3760f50c608eb51","sha1":"f2ed2a4fe0e1eadb7dd28444ea6b7a04abf0d38e","sha256":"daf58b06a09d467436ee5fd10eefbeadac3cf6ecaef1eca1884ef8330f561642","sha512":"02caf2ce2c2ecda7aabd9adaa2924fd05e89a024127c4cccdb4baca57baf4ac83a95d135f4ce1c91115f755841e50fd4fcb2881a75ac8ed6ae1b9d5621950103","ssdeep":"","tlshash":"75e09b60a150d440c4575135c106cbf40355cd167469de7fc1473c477c290c954191f3","first_seen":"2023-05-02T14:33:14Z","last_seen":"2026-06-20T17:33:25.196639Z","times_seen":2111,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"http","addr":"radiorsj.be/baj/753378f575002af/login.php","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":80,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-20T12:14:24.217Z","timestamp":1781957664217,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /baj/753378f575002af/login.php HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Sat, 20 Jun 2026 12:13:59 GMT\r\nServer: Apache\r\nLocation: https://radiorsj.be/baj/753378f575002af/login.php\r\nContent-Length: 297\r\nContent-Type: text/html; charset=iso-8859-1\r\nX-Varnish: 35726625257 35634974843\r\nAge: 25\r\nVia: 1.1 webcache2 (Varnish/trunk)\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-20T17:29:48.779532Z","times_seen":16585560,"resource_available":true,"data":null}},"time_used":21,"timings":{"blocked":-1,"dns":3,"connect":8,"send":0,"wait":9,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/js/jquery.min.js","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.013Z","timestamp":1781957667013,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/js/jquery.min.js HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"15851-65476a470e480-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 30679\r\ncontent-type: text/javascript\r\nx-varnish: 35508758096\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":88145,"size_decoded":31038,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators","md5":"2f772fed444d5489079f275bd01e26cc","sha1":"a8927ac2830b2fdd4a729eb0eb7f80923539ceb9","sha256":"2b381363dda049f2d49a59037b228bc865d51ffb977c8f5c3547d5c28de48e3a","sha512":"81f3b4d35aaa98af19a4d31ee5399d49e0f70ce52aadefffbf42c6c4489d9d50a49450eec8e9139a009da82b57bf677665a926d5ae913dfc4c74baeec186c422","ssdeep":"1536:jTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPmw:jgZm0H5HO5+gCKWZyPmHQ47GKc","tlshash":"8f8319dd72c6706257b761ba00bf540bf236599e6c4d4410f124e8eabc78a4a823bf7d","first_seen":"2023-03-07T01:02:42Z","last_seen":"2026-06-20T17:33:25.187523Z","times_seen":7070,"resource_available":true,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/js/bootstrap.min.js","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.016Z","timestamp":1781957667016,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/js/bootstrap.min.js HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"e6b2-65476a470e480-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 15339\r\ncontent-type: text/javascript\r\nx-varnish: 35508758098\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":59058,"size_decoded":15697,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (59058), with no line terminators","md5":"0f9ea8d6bb66dbed6e0966f9da35b7fd","sha1":"8095a33f75ca53aa5409b8bf00ea30372755092d","sha256":"306ab8dd287ef041231a510b7e4c027a11e28b20c3408a9185d895c091dc72a4","sha512":"b3938742cf578e02cc239ac8ba7d47f0cb059f87f45a6672ebf006083c45714e19378b16faa3e8a775c2418d572860bee233c2c9ece628cbf30690b1967d99ec","ssdeep":"768:ftnphx1HVSaigVo47yTVKHhtUzOHdqiNWsfdocvCXspq6zR9PW+xKw:fxlpUzP1qks5R9Kw","tlshash":"0243c64a7214787246cfa56a817f060bb3377889e80a816cb86d98dd1f7cd493267f7c","first_seen":"2023-03-07T01:33:40Z","last_seen":"2026-06-20T17:33:25.191636Z","times_seen":622,"resource_available":true,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/remember.jpg","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.033Z","timestamp":1781957667033,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/remember.jpg HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"d15-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 3349\r\ncontent-type: image/jpeg\r\nx-varnish: 35508758104\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":3349,"size_decoded":3648,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2019:11:08 21:41:22], baseline, precision 8, 232x26, components 3","md5":"749caf8b2ee7d53e19e9aefc264f1edd","sha1":"6e47816ee429dce1b7bc90d3c4e7077f7717abef","sha256":"523f01e171ebf63770e025487bdcfe986841d4ec2da50c1486d2632066eacd5f","sha512":"83b0aa561ffeac3b194fa6c1c8424d804be929b8a22b61e587336e8383db3e1d21d863e663758027708a2da882e8ba7554e56591a0cac1b6de0c72a13d457078","ssdeep":"","tlshash":"e6614b4a965203d0fbe388b7e4767ec696c7ac972398653683e706639070b76ce48d44","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.198313Z","times_seen":502,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/index-content.png","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.035Z","timestamp":1781957667035,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/index-content.png HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"aa08-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 43528\r\ncontent-type: image/png\r\nx-varnish: 35508758106\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":43528,"size_decoded":43828,"mime_type":"image/png","magic":"PNG image data, 593 x 592, 8-bit/color RGB, non-interlaced","md5":"f4c403921310dd027d80bee277a07894","sha1":"45807a9a77230206cb0834c30ddceeae64850f59","sha256":"f3aa0dd5b1e3d5f830cf26f58f5cfa81ab131fe433715ea0b6feb0264049c689","sha512":"72822f01d7f275c927e7f1c258557bb2f16eeb2367f8bfc973d38d365b883e2791d1be55dc5473de0c80e46dd0fb99a797f59594d3c5a606ec3090c77df5251c","ssdeep":"768:n3tO/HGkkcNQVFHTvMdaGEnhMSWMQslB4G549IPhCr3dbtqeke7uX1eXIHd:3Y/m/cKVBvMYbhMS/cMVkXqe5KFeXy","tlshash":"7e13e1ffef3a9a85d4f0487040e7a75614ebe022ab1fdf108995848d45b53525a838ef","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.189133Z","times_seen":332,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/index-content2.png","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.036Z","timestamp":1781957667036,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/index-content2.png HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"8d84-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 36228\r\ncontent-type: image/png\r\nx-varnish: 35508758107\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":36228,"size_decoded":36528,"mime_type":"image/png","magic":"PNG image data, 460 x 455, 8-bit/color RGB, non-interlaced","md5":"a6e1f764ffba84d8c87d5c6ff580567d","sha1":"e2711a90ac191e0c595f3cd7de89cec9de32242a","sha256":"8b51f84ac604efc8feee2300fdddb1da05829fffad58b827063b178846a5d4e8","sha512":"729dfc4efecab11354e45c0c5efdaf45ee6ba8db9f1e9c74342a85d63010f7822074a18253d58c3ec48eb73665a1bca462eb3fc70854c1362d1ba1646c520489","ssdeep":"768:UKWuzr7ecfTxLvjjFwsTmWG3EPxL+fh6aObhmQOSL:UqnJ2sTmWG3E1+kmQ3","tlshash":"23f2e14066aa72e7dcad78362808767c6826a6f409f431adc41d9c4d5337df29efc0da","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.19551Z","times_seen":332,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/footer-info2.png","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.039Z","timestamp":1781957667039,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/footer-info2.png HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"2311-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 8977\r\ncontent-type: image/png\r\nx-varnish: 35508758109\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":8977,"size_decoded":9276,"mime_type":"image/png","magic":"PNG image data, 346 x 187, 8-bit/color RGB, non-interlaced","md5":"b065809f2face89f453b75d954cdb1ea","sha1":"8aea05cfed6a0e5f146de91f1610b0b5fc49a724","sha256":"0607cd016f97fa4c139040c64dbc900d4d3e11676f1c00897c88fbb84850a083","sha512":"76d98164566a1d9743f687e7c13367ac89dfabb00daf0870e5703d68482a4eb91f0d2e7b54d6d83779614dde157e94dff0821ab9d7bbafcbc1c42a928883e3d6","ssdeep":"192:I7uQ3bdVHQ2thqWbovzRYO/5RDLyDP9UbEps+9UOBNc2u:+JHQ2PqCU5YPWG8T","tlshash":"1d026c8ae04bdae296b20606a9fc3841edfba12f22c47fc02a52d9dc27117e5045a577","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.19011Z","times_seen":332,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/social.png","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.041Z","timestamp":1781957667041,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/social.png HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"45c-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 1116\r\ncontent-type: image/png\r\nx-varnish: 35508758110\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":1116,"size_decoded":1414,"mime_type":"image/png","magic":"PNG image data, 154 x 30, 8-bit/color RGB, non-interlaced","md5":"8c6df0e9f76dfa34c82c796fb0614e08","sha1":"aaaec6b398f9be853f693da4556856b010d2ef22","sha256":"cda417f25f0b74a3b88979725a4bd5bcba224008dc354277ef48bbefdb96f24d","sha512":"aba4442d8d27ebef6c3e044f951ffd5832f8def753403756d91a9708cc0c7772ff2700311fb6be9cb0aeff0daf73f2a761fd55bc15613711dd649d18aa647e71","ssdeep":"","tlshash":"de21f9c46056af4cd0a9303abf000d8d67c262feb213127c6312bf0132519edc5e44e4","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.19221Z","times_seen":332,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/new-account.png","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.030Z","timestamp":1781957667030,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/new-account.png HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"9b7-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 2487\r\ncontent-type: image/png\r\nx-varnish: 35508758102\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":2487,"size_decoded":2785,"mime_type":"image/png","magic":"PNG image data, 171 x 44, 8-bit/color RGB, non-interlaced","md5":"b622349d9f97e5c39d581e873857edf2","sha1":"a37280d3e63eb4cf4ae734f2e08e5dd61025bb80","sha256":"12151d5190ac2f09ed928c16b833c8f4ab3daab155cf9c7c00fcd2466b6012bd","sha512":"151ce9ca3a4f1698366ae3b1f2e66ab6026aaead01b88dc3ea48b0392cb86e26307c57275477e80819bf278d17e8017ed116d004f80f6edd930de669fedc6be6","ssdeep":"","tlshash":"d5513bf259144fe6cf7e84365aea4c16cbd63a2799104b2dc5f88801b84a0d6f5633f4","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.197741Z","times_seen":471,"resource_available":false,"data":null}},"time_used":14,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/753378f575002af/login.php","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-20T12:14:21.623Z","timestamp":1781957661623,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /baj/753378f575002af/login.php HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-20T17:29:48.779532Z","times_seen":16585560,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/753378f575002af/login.php","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-20T12:14:24.245Z","timestamp":1781957664245,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/753378f575002af/login.php HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:24 GMT\r\nserver: Apache\r\nx-powered-by: PHP/8.5.6\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nset-cookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e; path=/\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-type: text/html; charset=UTF-8\r\nx-varnish: 35508758091\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"PHP:8.5.6","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Popper","description":"Popper is a positioning engine, its purpose is to calculate the position of an element to make it possible to position it near a given reference element.","website":"https://popper.js.org","common_platform_enumeration":"","icon":"Popper.svg","categories":["Miscellaneous"]},{"name":"Font Awesome","description":"Font Awesome is a font and icon toolkit based on CSS and Less.","website":"https://fontawesome.com/","common_platform_enumeration":"","icon":"Font Awesome.svg","categories":["Font scripts"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":8962,"size_decoded":2253,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"4d0a6b7285b5c7f377e8b9cdee6051a6","sha1":"bbe8ff123faf158db129dd37a0fe2dfecbe66247","sha256":"2543df81b536d36122b5b78dc116092cdfd86b55108d1f2dc72610e797c248ae","sha512":"8aec43d7e3585d962b42dfd22ea7e4e52bb0aee5a17ac71774d375aae6b3ae6887aee3c2bc2e29697deb834cd4d8814901f45154d6edaa473218a50379378f79","ssdeep":"48:0Wje12Sqfw5dVdsw0np1wrKCb169GHhlJO2Iy+kSJDAuDUwv5uYvtk7hQAPoubtE:cwnfw5jdAE52WOQbSF9hzl2QrubtE","tlshash":"0c02eb11e4c145ab127391c49e702bb9ff918203e74e8a4832fc579b3ff6d489c876a9","first_seen":"2023-04-05T09:15:33Z","last_seen":"2026-06-20T17:33:25.190607Z","times_seen":325,"resource_available":true,"data":null}},"time_used":2453,"timings":{"blocked":0,"dns":0,"connect":8,"send":0,"wait":2424,"receive":0,"ssl":20},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/css/main.css","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.007Z","timestamp":1781957667007,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/css/main.css HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"15f3-65476a470e480-gzip\"\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1479\r\ncontent-type: text/css\r\nx-varnish: 35508758095\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":5619,"size_decoded":1829,"mime_type":"text/css","magic":"ASCII text, with very long lines (5617), with CRLF line terminators","md5":"3db7672baec15276bccefdfde196b986","sha1":"4e916d1760c4ab5a8cf798be6630de72ff02f4ea","sha256":"794793569b5e1bc45ccbab8025d3f6154779a83e5d0905b24d8def2ce5f85330","sha512":"3e1e462d0e4f96c02818b8a2c0aa3102e5870c40873dd516f6d3a33aa48b5ff4c176b118f24dacdd77304f9a2240f8923178985416d7b7596886b36713c2ebf8","ssdeep":"96:RmZ5XoXynyTA+M5wBfqzyA2oWoYw1PH5AHJIvFko2sKbT4sTP98f2:RmZ5XoXyn/r5wxqCoBjZAUFz2sKbT4sZ","tlshash":"3cc1443293102548ba53cdaef0c9a7eb702cdca2845a06abeb15305f86d715e1777b8d","first_seen":"2023-09-05T17:41:10Z","last_seen":"2026-06-20T17:33:25.194401Z","times_seen":65,"resource_available":false,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"radiorsj.be/baj/assets/images/logo.jpg","fqdn":"radiorsj.be","domain":"radiorsj.be","tld":"be"},"ip":{"addr":"77.111.240.174","port":443,"asn":51468,"as":"One.com A/S","country":"Denmark","country_code":"DK"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://radiorsj.be/baj/753378f575002af/login.php","date":"2026-06-20T12:14:27.042Z","timestamp":1781957667042,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.radiorsj.be","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Wed, 13 May 2026 14:51:28 GMT","end":"Tue, 11 Aug 2026 14:51:27 GMT"},"fingerprint":{"sha1":"F6:8A:D4:78:44:ED:53:20:AF:A0:BC:09:26:4B:67:C3:77:C6:44:55","sha256":"D2:35:9B:B3:84:81:A7:F4:9D:0C:38:3E:31:3C:0A:9E:E4:29:AE:CE:EB:D5:2E:CC:C5:DF:C0:B4:77:50:8B:3D"}}},"request":{"raw":"GET /baj/assets/images/logo.jpg HTTP/1.1\r\nHost: radiorsj.be\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://radiorsj.be/baj/753378f575002af/login.php\r\nCookie: PHPSESSID=5c600e3ca8f1da748599a25fdf78a69e\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sat, 20 Jun 2026 12:14:27 GMT\r\nserver: Apache\r\nlast-modified: Wed, 17 Jun 2026 17:46:42 GMT\r\netag: \"ebc-65476a470e480\"\r\naccept-ranges: bytes\r\ncontent-length: 3772\r\ncontent-type: image/jpeg\r\nx-varnish: 35508758111\r\nage: 0\r\nvia: 1.1 webcache2 (Varnish/trunk)\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3772,"size_decoded":4071,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2019:11:08 21:35:13], baseline, precision 8, 160x33, components 3","md5":"f85385da3d92ffbf4a5f706ec6f6b1fe","sha1":"c6321ff15f1d136f6c04728b8c058d301ca66c3d","sha256":"04690f1deb47cc41bcb7fbc072a9fdc7893c279a2857bea2d0fdfb90f5aebf17","sha512":"b2951b561bd042281d4360c8e35d5af1df963724c4132a03cb301466a5a64256a31a31cfb9789f1a551b63a657ec4967ce38a197804e0cf65d1029c128db8e02","ssdeep":"","tlshash":"da714c5593039bc4fa49937eae6e7f9345f7da92a544521b80d51123cb11f789d48c0c","first_seen":"2023-05-05T14:04:06Z","last_seen":"2026-06-20T17:33:25.1961Z","times_seen":347,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"radiorsj.be","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-06-20","alert":"Phishing Block","trigger":"radiorsj.be","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Societe Generale","verdict":"phishing","severity":"medium","comment":"Asset commenly seen with Societe Generale phishing","tags":["societe_generale","financial","phishing"],"meta":null}]}}]}