{"report_id":"c0d9d3bc-d69a-4e24-8137-34282df2d571","version":6,"status":"done","tags":["microsoft","phishing"],"date":"2026-03-25T15:53:40Z","url":{"schema":"http","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.104","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"title":"Sign in to your Microsoft account","dom":{"size":10052,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (494)","md5":"85231b6e46b94caf7c1a9a9c925cbec1","sha1":"167e9ea3ddcb0ef34caa4616d57fef4cd1ba6be8","sha256":"c072fd554a1feaee01959df49d24d414d613912c793d29ac3dd66e7c89464daa","sha512":"704c711b140fb20aad44844d0349d2fa20dea529eecb2c8c3d7b3f7f31f0e7a085de6f4b8b92302f4554b838605f4effccad3ae14f6c32e8c2176aed8d63c0ec","ssdeep":"96:jTjfjaSJehD9PJo97G6I6AkeakPTjvJafY2EuG0JNRuf8fh86lv:3jUQpTv+JaZ1vfh8Gv","tlshash":"2622003164f04927418281d97bb9ae1b3f90ea07da4b8a1076ac4fd65fe3ddacc1b11c","dom_hash":"domhash47aa502ac30a1f0cfa9d0bdcec92990e","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.104","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-29T15:53:40Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null},{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]},"summary":[{"fqdn":"microsoft.authorised-support.com","ip":{"addr":"3.173.161.95","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2024-09-20","domain_rank":0,"first_seen":"2025-03-17T23:50:22.022928Z","last_seen":"2026-03-25T12:26:13.110329Z","alert_count":27,"request_count":9,"received_data":152518,"sent_data":6220,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/js/main.js","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.95","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"33bb80bc2bd6355192658567f93fad35","sha1":"f16881ff48d9dfd7576795ef2ff6ee638de46747","sha256":"5c353902dcaa6525f2e57a8af86e23a000765da21093d55043baa846b2d7ec7d","sha512":"5f068b3fdd79bbdfca49fad4d7adc6cd1adafef606f5ed1e4e8dfffdd030fd224d8a858438af9849fe43fd0683b33377881ad03a18a01cdd3f4e601e994a3313","ssdeep":"","tlshash":"5c112cab314108290eff36df64d29aca3d70c455586a04250779ea46e236ec17d3abeb","size":868,"data":"","first_seen":"2025-07-24T16:36:54.98311Z","last_seen":"2026-04-04T18:59:53.192903Z","times_seen":30,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/js/common.js","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.95","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"4055559d986bb83ef861fea98464e81f","sha1":"5d0344bb39419349124d250d323d8ff93f022f1c","sha256":"a02f4c009d085355be3f332b7b4440b2cc168c7a69452e52caca1472dfb1cff5","sha512":"de36606570e3b3c58e02065f9a8d7c28a06090871b58e4ab6964799bf3a9decb12e4a3dad47d8c3d847f3ebd2f2a0b6d1283e57e5f7aaccbd723f9cbd9733cd3","ssdeep":"","tlshash":"0e51fd2a30b751f045f7049c6b8bd261613a14633589d989f69d4f891fcdf2ea0a37ce","size":3114,"data":"","first_seen":"2025-12-13T04:30:56.914064Z","last_seen":"2026-04-11T02:22:17.384964Z","times_seen":100,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/css/main.css","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.95","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB","date":"2026-03-25T15:53:19.772Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"account-management.net.au","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:6B:F7:7E:E0:02:F5:7A:57:AD:60:BA:51:01:90:09:4F:C1:77:8E","sha256":"89:7E:B8:61:12:36:0E:E4:44:55:89:43:7F:D7:2B:5F:63:5F:BC:B4:14:D0:ED:AB:26:A1:55:54:42:71:DF:47"}}},"request":{"raw":"GET /login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/css/main.css HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css\r\ncontent-length: 105216\r\nx-amz-id-2: I7F3qhWNo74q1yhoOUm644f68dZl53PF88qnkr+gX/43xTjQeJ1Nm4yv0Wpa3FQ9EPtXwnk5S0g=\r\nx-amz-request-id: XF0PPRB5VQN7ZCQM\r\ndate: Wed, 25 Mar 2026 15:53:21 GMT\r\nlast-modified: Wed, 10 Dec 2025 04:48:53 GMT\r\netag: \"75671ab4da372008bde39f3df19196a2\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nvia: 1.1 4095cc1035c50f7a6d7cf53bccb0cea0.cloudfront.net (CloudFront)\r\nx-cache: Miss from cloudfront\r\nx-amz-cf-pop: AMS56-P1\r\nx-amz-cf-id: fcTy_jlFrKdmC8oy6-NH2yKfWcu6JuGcoIZ9JEMPk-wuTO16gSgVkA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":105216,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"75671ab4da372008bde39f3df19196a2","sha1":"992dcc2c1d1e30ae129264092d3c8435ad9044e8","sha256":"088856f14b5b53bef73702f3333d48e35742a1ce0a4f630949f7c658d40b66aa","sha512":"c40068944b6d92c38d85917f7860f1882eca0610871bdb0275a161215d70fd407608351c688b62e4ed80fc3ee6eb25be60fb3fe8252fc777b7fb31ec4ee1fa16","ssdeep":"1536:8n7CPw+kGDazA/PWrF7qvEAFiQcpmTKgMtJ0yVU/c:IIlzyVU0","tlshash":"c4a3b79069243d26e037c73571c1bd8762211503e677aebbf6262db9cf896cb0b31e49","first_seen":"2024-02-23T23:59:54Z","last_seen":"2026-04-12T10:15:19.291167Z","times_seen":76,"resource_available":false,"data":null}},"time_used":1517,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1041,"receive":476,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/js/main.js","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.95","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB","date":"2026-03-25T15:53:19.776Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"account-management.net.au","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:6B:F7:7E:E0:02:F5:7A:57:AD:60:BA:51:01:90:09:4F:C1:77:8E","sha256":"89:7E:B8:61:12:36:0E:E4:44:55:89:43:7F:D7:2B:5F:63:5F:BC:B4:14:D0:ED:AB:26:A1:55:54:42:71:DF:47"}}},"request":{"raw":"GET /login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/js/main.js HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\ncontent-length: 868\r\nx-amz-id-2: uN24D1sNOtquVeIeqh8TEcfpuTNVUJOeJ+uexsN6/jFmzrIAmm5SLNjBzHKREw741CPv/xN9xTODM2bFoiiNJFOprRb6AK5F\r\nx-amz-request-id: XF0NJZKT7BWG201J\r\ndate: Wed, 25 Mar 2026 15:53:21 GMT\r\nlast-modified: Wed, 10 Dec 2025 04:48:54 GMT\r\netag: \"33bb80bc2bd6355192658567f93fad35\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nvia: 1.1 4095cc1035c50f7a6d7cf53bccb0cea0.cloudfront.net (CloudFront)\r\nx-cache: Miss from cloudfront\r\nx-amz-cf-pop: AMS56-P1\r\nx-amz-cf-id: eaifiQzjSfrqDhg2xlj-2RTt8tZ2CaQTKXkRHf6A6ButcUf1O88Q-g==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":868,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with very long lines (868), with no line terminators","md5":"33bb80bc2bd6355192658567f93fad35","sha1":"f16881ff48d9dfd7576795ef2ff6ee638de46747","sha256":"5c353902dcaa6525f2e57a8af86e23a000765da21093d55043baa846b2d7ec7d","sha512":"5f068b3fdd79bbdfca49fad4d7adc6cd1adafef606f5ed1e4e8dfffdd030fd224d8a858438af9849fe43fd0683b33377881ad03a18a01cdd3f4e601e994a3313","ssdeep":"","tlshash":"5c112cab314108290eff36df64d29aca3d70c455586a04250779ea46e236ec17d3abeb","first_seen":"2025-07-24T16:36:54.98311Z","last_seen":"2026-04-04T18:59:53.192903Z","times_seen":30,"resource_available":true,"data":null}},"time_used":849,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":848,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/js/common.js","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.95","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB","date":"2026-03-25T15:53:19.777Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"account-management.net.au","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:6B:F7:7E:E0:02:F5:7A:57:AD:60:BA:51:01:90:09:4F:C1:77:8E","sha256":"89:7E:B8:61:12:36:0E:E4:44:55:89:43:7F:D7:2B:5F:63:5F:BC:B4:14:D0:ED:AB:26:A1:55:54:42:71:DF:47"}}},"request":{"raw":"GET /login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/js/common.js HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/javascript\r\ncontent-length: 3114\r\nx-amz-id-2: 10UmJPiMk416298NKvGRhzPa0E/7uUQb5I8W7KXld654PN4gmQnxG/Jr6HBVNrV97DrvfNQKnKU=\r\nx-amz-request-id: XF0SZB7RDXJSHQV2\r\ndate: Wed, 25 Mar 2026 15:53:21 GMT\r\nlast-modified: Wed, 10 Dec 2025 04:48:44 GMT\r\netag: \"4055559d986bb83ef861fea98464e81f\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nvia: 1.1 4095cc1035c50f7a6d7cf53bccb0cea0.cloudfront.net (CloudFront)\r\nx-cache: Miss from cloudfront\r\nx-amz-cf-pop: AMS56-P1\r\nx-amz-cf-id: -5jDESsW2OC2IZLE3ZIMeleCUTVmkOkYXoDTR7ulmBfRMsXeS6qCGg==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":3114,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text","md5":"4055559d986bb83ef861fea98464e81f","sha1":"5d0344bb39419349124d250d323d8ff93f022f1c","sha256":"a02f4c009d085355be3f332b7b4440b2cc168c7a69452e52caca1472dfb1cff5","sha512":"de36606570e3b3c58e02065f9a8d7c28a06090871b58e4ab6964799bf3a9decb12e4a3dad47d8c3d847f3ebd2f2a0b6d1283e57e5f7aaccbd723f9cbd9733cd3","ssdeep":"","tlshash":"0e51fd2a30b751f045f7049c6b8bd261613a14633589d989f69d4f891fcdf2ea0a37ce","first_seen":"2025-12-13T04:30:56.914064Z","last_seen":"2026-04-11T02:22:17.384964Z","times_seen":100,"resource_available":true,"data":null}},"time_used":895,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":895,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/images/documentation_bcb4d1dc4eae64f0b2b2538209d8435a.svg","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.95","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB","date":"2026-03-25T15:53:19.780Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"account-management.net.au","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:6B:F7:7E:E0:02:F5:7A:57:AD:60:BA:51:01:90:09:4F:C1:77:8E","sha256":"89:7E:B8:61:12:36:0E:E4:44:55:89:43:7F:D7:2B:5F:63:5F:BC:B4:14:D0:ED:AB:26:A1:55:54:42:71:DF:47"}}},"request":{"raw":"GET /login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/images/documentation_bcb4d1dc4eae64f0b2b2538209d8435a.svg HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/svg+xml\r\ncontent-length: 1555\r\nx-amz-id-2: nsJNDIFDl/mvbHSOBtL19I+4fbY4PMPWbffc775ns+eHpteLvXzUlQJ/DaezAb65G/EXhf4yh9g=\r\nx-amz-request-id: XF0TKD3S8977SJAX\r\ndate: Wed, 25 Mar 2026 15:53:21 GMT\r\nlast-modified: Wed, 10 Dec 2025 04:48:53 GMT\r\netag: \"bcb4d1dc4eae64f0b2b2538209d8435a\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nvia: 1.1 4095cc1035c50f7a6d7cf53bccb0cea0.cloudfront.net (CloudFront)\r\nx-cache: Miss from cloudfront\r\nx-amz-cf-pop: AMS56-P1\r\nx-amz-cf-id: ozSkKWFGy9RfjEtii0HRUwT5pT1ZngPVWPKiallsMaOzhokUwv7mWQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1555,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bcb4d1dc4eae64f0b2b2538209d8435a","sha1":"4f10568bc1b70bc98d5297b85812c33b3e636766","sha256":"a76c08e9cdc3bb87bfb57627ad8f6b46f0e5ef826cc7f046dfbaf25d7b7958ea","sha512":"db41de25233b7000dd841d244ca2a7504e4b1443a7cf41aa88136764eeb3002b3b99d0e8b31a828afe4749f454adcf5d2e4f9f72d645f0a6e66918b5e5a8a7b1","ssdeep":"","tlshash":"7e31277f029946cd9ee59b543b30b24d7fb9a64b73a240844f073ed95c866b3a438d23","first_seen":"2023-05-08T01:25:43Z","last_seen":"2026-04-12T10:15:19.290035Z","times_seen":722,"resource_available":false,"data":null}},"time_used":1069,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1069,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.95","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB","date":"2026-03-25T15:53:19.781Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"account-management.net.au","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:6B:F7:7E:E0:02:F5:7A:57:AD:60:BA:51:01:90:09:4F:C1:77:8E","sha256":"89:7E:B8:61:12:36:0E:E4:44:55:89:43:7F:D7:2B:5F:63:5F:BC:B4:14:D0:ED:AB:26:A1:55:54:42:71:DF:47"}}},"request":{"raw":"GET /login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/svg+xml\r\ncontent-length: 1592\r\nx-amz-id-2: YCOxXOt+lswcWl8EmvGwx5Ohx4tfjl6SdbYyVboWVDH0p209YqX+nTkmLqCQISvZRx9itellnJV3fIMO4GBpGA0f0zOt/rM3\r\nx-amz-request-id: XF0YEM90PTGDQJQ6\r\ndate: Wed, 25 Mar 2026 15:53:21 GMT\r\nlast-modified: Wed, 10 Dec 2025 04:48:54 GMT\r\netag: \"4e48046ce74f4b89d45037c90576bfac\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nvia: 1.1 4095cc1035c50f7a6d7cf53bccb0cea0.cloudfront.net (CloudFront)\r\nx-cache: Miss from cloudfront\r\nx-amz-cf-pop: AMS56-P1\r\nx-amz-cf-id: jS1As-qo_R7BtRp1yv6hklWLEoZegIt-SGnZtks7DyIfDe885utoWA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1592,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"4e48046ce74f4b89d45037c90576bfac","sha1":"4a41b3b51ed787f7b33294202da72220c7cd2c32","sha256":"8e6db1634f1812d42516778fc890010aa57f3e39914fb4803df2c38abbf56d93","sha512":"b2bba2a68edaa1a08cfa31ed058afb5e6a3150aabb9a78db9f5ccc2364186d44a015986a57707b57e2cc855fa7da57861ad19fc4e7006c2c239c98063fe903cf","ssdeep":"","tlshash":"b931787f43b45ae7239017741760626c13f4ee917169d0b4dba30c9a8d4bd33327843a","first_seen":"2023-04-14T20:16:11Z","last_seen":"2026-04-12T20:41:15.167275Z","times_seen":73234,"resource_available":false,"data":null}},"time_used":860,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":860,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.95","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-25T15:53:18.461Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"account-management.net.au","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:6B:F7:7E:E0:02:F5:7A:57:AD:60:BA:51:01:90:09:4F:C1:77:8E","sha256":"89:7E:B8:61:12:36:0E:E4:44:55:89:43:7F:D7:2B:5F:63:5F:BC:B4:14:D0:ED:AB:26:A1:55:54:42:71:DF:47"}}},"request":{"raw":"GET /login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-length: 11640\r\nx-amz-id-2: 2bjGLjfWRAK9BKhsO4upNwRqtgc23L5/2+DRCq5JmFLBO+i52Faojl3eGLINCvkkhpNLqnP5bZ51OaJzgk6DG9VVfk1rRsG5\r\nx-amz-request-id: 0R2KFWP22GA4FDFV\r\ndate: Wed, 25 Mar 2026 15:53:20 GMT\r\nlast-modified: Wed, 25 Mar 2026 15:53:19 GMT\r\netag: \"6d7bce4145378473ac46bbdeb53bbb0d\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nvia: 1.1 4095cc1035c50f7a6d7cf53bccb0cea0.cloudfront.net (CloudFront)\r\ncache-control: private, no-cache, no-store, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0, stale-while-revalidate=0, stale-if-error=0\r\npragma: no-cache\r\nexpires: 0\r\nsurrogate-control: no-store\r\nvary: *\r\nx-cache: Miss from cloudfront\r\nx-amz-cf-pop: AMS56-P1\r\nx-amz-cf-id: XmAYkgBZNAkPfKhYSDWnB0QXZGnjluMp4G_YmdYmXelEKCFo3ivY2w==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":11640,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"6d7bce4145378473ac46bbdeb53bbb0d","sha1":"7330bae99206331d5c13cb1a67bc3d40d1cbe060","sha256":"aa5660d67db4acb77310ec845e0bbfe7495d01c971edff59ba32a51753357866","sha512":"0906072ae063c5fcdd22d800524293567ce3883d1d63c530e649dc76f49c43339efd1c1cb09f715e302a1d6abd51882c72d3531b521e6cf00c262642737aca36","ssdeep":"96:PpZjfpaSJehD9PpoL7o6C6AkeakPTlvhCWY2+G+qNFexClh867gu:RZFUYz9v+jCMzlh8ugu","tlshash":"e4321c2064f009a7018ac4d97afa6e1b3f80ea07da4b9a1436ac4fd55fe3dd6cc1b11c","first_seen":"2025-07-24T16:32:56.6927Z","last_seen":"2026-04-04T18:59:53.19221Z","times_seen":33,"resource_available":true,"data":null}},"time_used":1406,"timings":{"blocked":268,"dns":14,"connect":16,"send":0,"wait":869,"receive":1,"ssl":234},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.95","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB","date":"2026-03-25T15:53:19.778Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"account-management.net.au","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:6B:F7:7E:E0:02:F5:7A:57:AD:60:BA:51:01:90:09:4F:C1:77:8E","sha256":"89:7E:B8:61:12:36:0E:E4:44:55:89:43:7F:D7:2B:5F:63:5F:BC:B4:14:D0:ED:AB:26:A1:55:54:42:71:DF:47"}}},"request":{"raw":"GET /login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/svg+xml\r\ncontent-length: 3651\r\nx-amz-id-2: XNy2zU7gPERrDNzhDZDn6Z+0/A1FziM7xWJPXO0JqtRtdLS68JU7yzzNaKNspTUWqgx8pKt7maw=\r\nx-amz-request-id: XF0SDSK4ABJ26CQF\r\ndate: Wed, 25 Mar 2026 15:53:21 GMT\r\nlast-modified: Wed, 10 Dec 2025 04:48:53 GMT\r\netag: \"ee5c8d9fb6248c938fd0dc19370e90bd\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nvia: 1.1 4095cc1035c50f7a6d7cf53bccb0cea0.cloudfront.net (CloudFront)\r\nx-cache: Miss from cloudfront\r\nx-amz-cf-pop: AMS56-P1\r\nx-amz-cf-id: Aztl1PMaJDzEkv6xqyWr08kFW_OQdEi2LT3eEmInBeeNYwMXLF6Ziw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":3651,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ee5c8d9fb6248c938fd0dc19370e90bd","sha1":"d01a22720918b781338b5bbf9202b241a5f99ee4","sha256":"04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a","sha512":"c77215b729d0e60c97f075998e88775cd0f813b4d094dc2fdd13e5711d16f4e5993d4521d0fbd5bf7150b0dbe253d88b1b1ff60901f053113c5d7c1919852d58","ssdeep":"","tlshash":"6371117b132887dae9d4a78c2e997b8d377095c4b1b24290874328a5bc086f7f038d60","first_seen":"2023-04-06T08:44:24Z","last_seen":"2026-04-12T16:19:20.574722Z","times_seen":123258,"resource_available":false,"data":null}},"time_used":1104,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1104,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/images/2_bc3d32a696895f78c19df6c717586a5d.svg","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.95","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB","date":"2026-03-25T15:53:21.332Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"account-management.net.au","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:6B:F7:7E:E0:02:F5:7A:57:AD:60:BA:51:01:90:09:4F:C1:77:8E","sha256":"89:7E:B8:61:12:36:0E:E4:44:55:89:43:7F:D7:2B:5F:63:5F:BC:B4:14:D0:ED:AB:26:A1:55:54:42:71:DF:47"}}},"request":{"raw":"GET /login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/images/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/svg+xml\r\ncontent-length: 1864\r\nx-amz-id-2: syfjPL2iTI9bGh2onr01X3NCiFWLAA69ju4RgDjZ8Qr510LwWr7Z7GDrB/O0i9waTm5BFwOOe19owOXyYVQmtXPBGxefzUeC\r\nx-amz-request-id: A33T085X6PAW691A\r\ndate: Wed, 25 Mar 2026 15:53:23 GMT\r\nlast-modified: Wed, 10 Dec 2025 04:48:53 GMT\r\netag: \"bc3d32a696895f78c19df6c717586a5d\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nvia: 1.1 4095cc1035c50f7a6d7cf53bccb0cea0.cloudfront.net (CloudFront)\r\nx-cache: Miss from cloudfront\r\nx-amz-cf-pop: AMS56-P1\r\nx-amz-cf-id: I-lT5_6lrfzZ9KPvd3zkb3CZUD_1WpddlrTZ12VTw7OUmk9Pa4nb5A==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1864,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"bc3d32a696895f78c19df6c717586a5d","sha1":"9191cb156a30a3ed79c44c0a16c95159e8ff689d","sha256":"0e88b6fcbb8591edfd28184fa70a04b6dd3af8a14367c628edd7caba32e58c68","sha512":"8d4f38907f3423a86d90575772b292680f7970527d2090fc005f9b096cc81d3f279d59ad76eafca30c3d4bbaf2276bbaa753e2a46a149424cf6f1c319ded5a64","ssdeep":"","tlshash":"4e310059c51d3566ec04c3aceae1d468315e71efa8a581c961849b3f95b0dce0eccb70","first_seen":"2023-04-12T23:20:27Z","last_seen":"2026-04-12T10:15:19.287641Z","times_seen":102396,"resource_available":false,"data":null}},"time_used":854,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":854,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}},{"url":{"schema":"https","addr":"microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/images/favicon.ico","fqdn":"microsoft.authorised-support.com","domain":"authorised-support.com","tld":"com"},"ip":{"addr":"3.173.161.95","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB","date":"2026-03-25T15:53:21.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"account-management.net.au","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:6B:F7:7E:E0:02:F5:7A:57:AD:60:BA:51:01:90:09:4F:C1:77:8E","sha256":"89:7E:B8:61:12:36:0E:E4:44:55:89:43:7F:D7:2B:5F:63:5F:BC:B4:14:D0:ED:AB:26:A1:55:54:42:71:DF:47"}}},"request":{"raw":"GET /login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/images/favicon.ico HTTP/1.1\r\nHost: microsoft.authorised-support.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://microsoft.authorised-support.com/login/o_lOSw1XYSCndice1aNeaktBKsc4hTtz5VEA=9CA==6W19VRFlFWVBCaVpZUV9YaUFfQl5pRldFRUFZRFI=/6cm6AcO974xm5DyQm__OGtKlRTxGxBGB\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/vnd.microsoft.icon\r\ncontent-length: 17174\r\nx-amz-id-2: 1knzUdBM74WOmkfiIkiEr93P9l6uxRpBpQf188QhtH2N7io7wnqnqoSjJSvLlExvn2I5gYYWkmk=\r\nx-amz-request-id: A33R2KEEWNKATD95\r\ndate: Wed, 25 Mar 2026 15:53:23 GMT\r\nlast-modified: Wed, 10 Dec 2025 04:48:53 GMT\r\netag: \"12e3dac858061d088023b2bd48e2fa96\"\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\nvia: 1.1 4095cc1035c50f7a6d7cf53bccb0cea0.cloudfront.net (CloudFront)\r\nx-cache: Miss from cloudfront\r\nx-amz-cf-pop: AMS56-P1\r\nx-amz-cf-id: EBpPPgv1PtZA_YPfCFINkbmMy9oJhNr4GwDiaGdJsA__obcs9JUYvQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":17174,"size_decoded":0,"mime_type":"image/vnd.microsoft.icon","magic":"MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors","md5":"12e3dac858061d088023b2bd48e2fa96","sha1":"e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5","sha256":"90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21","sha512":"c5030c55a855e7a9e20e22f4c70bf1e0f3c558a9b7d501cfab6992ac2656ae5e41b050ccac541efa55f9603e0d349b247eb4912ee169d44044271789c719cd01","ssdeep":"24:QSNTmTFxg4lyyyyyyyyyyyyyio7eeeeeeeeekzgsLsLsLsLsLsQZp:nfgyyyyyyyyyyyyynzQQQQQO","tlshash":"b772e35b1f5f4981ec4b0db80b125e80c5e49c973854dffbdb76b62888b0364ab845eb","first_seen":"2023-04-05T03:19:57Z","last_seen":"2026-04-12T16:33:55.449404Z","times_seen":163651,"resource_available":false,"data":null}},"time_used":854,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":852,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-25","alert":"Sinkholed","trigger":"microsoft.authorised-support.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Phishing - Microsoft","verdict":"phishing","severity":"medium","comment":"Resource associated with Microsoft phishing","tags":["microsoft","phishing"],"meta":null}]}}]}