{"report_id":"c5d4e1ed-29de-42d9-b73f-a94bde97d9a9","version":6,"status":"done","tags":[],"date":"2023-11-30T13:40:31Z","url":{"schema":"http","addr":"amictools.com/download/AntiKeyloggerShieldSetup.exe","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":0,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"final":{"url":{"schema":"http","addr":"amictools.com/download/AntiKeyloggerShieldSetup.exe/","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"title":"amictools.com"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T09:54:04Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"amictools.com","ip":{"addr":"213.171.212.210","port":0,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"domain_registered":"2006-05-16","domain_rank":0,"first_seen":"2012-05-23 20:41:18","last_seen":"2023-11-30 14:40:04","alert_count":0,"request_count":9,"received_data":561179,"sent_data":3809,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2023-11-30T13:40:18Z","timestamp":1701351618,"ip_dst":{"addr":"Client IP","port":44382,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"213.171.212.210","port":443,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"severity":"high","alert":"ET POLICY Self Signed SSL Certificate (SomeOrganizationalUnit)","source":"{\"timestamp\":\"2023-11-30T13:40:18.058579+0000\",\"flow_id\":1678969569112288,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"213.171.212.210\",\"src_port\":443,\"dest_ip\":\"10.70.215.141\",\"dest_port\":44382,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2013659,\"rev\":6,\"signature\":\"ET POLICY Self Signed SSL Certificate (SomeOrganizationalUnit)\",\"category\":\"Potential Corporate Privacy Violation\",\"severity\":1,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2011_09_15\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"POLICY\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"SSL_Malicious_Cert\"],\"updated_at\":[\"2022_03_23\"]}},\"tls\":{\"subject\":\"C=--, ST=SomeState, L=SomeCity, O=SomeOrganization, OU=SomeOrganizationalUnit, CN=7C2E91E.online-server.cloud, Email=root@7C2E91E.online-server.cloud\",\"issuerdn\":\"C=--, ST=SomeState, L=SomeCity, O=SomeOrganization, OU=SomeOrganizationalUnit, CN=7C2E91E.online-server.cloud, Email=root@7C2E91E.online-server.cloud\",\"serial\":\"13:00\",\"fingerprint\":\"6e:f4:73:58:74:3d:0b:08:54:c9:f5:99:2f:40:4f:01:9c:f6:76:c7\",\"sni\":\"amictools.com\",\"version\":\"TLS 1.2\",\"notbefore\":\"2022-07-06T19:10:08\",\"notafter\":\"2023-07-06T19:10:08\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"0debd3853f330c574b05e0b6d882dc27\",\"string\":\"771,49200,65281-11\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":8,\"pkts_toclient\":5,\"bytes_toserver\":1210,\"bytes_toclient\":1911,\"start\":\"2023-11-30T13:40:17.946400+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-11-30T13:40:18Z","timestamp":1701351618,"ip_dst":{"addr":"Client IP","port":44390,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"213.171.212.210","port":443,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"severity":"high","alert":"ET POLICY Self Signed SSL Certificate (SomeOrganizationalUnit)","source":"{\"timestamp\":\"2023-11-30T13:40:18.391077+0000\",\"flow_id\":601194770869707,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"213.171.212.210\",\"src_port\":443,\"dest_ip\":\"10.70.215.141\",\"dest_port\":44390,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2013659,\"rev\":6,\"signature\":\"ET POLICY Self Signed SSL Certificate (SomeOrganizationalUnit)\",\"category\":\"Potential Corporate Privacy Violation\",\"severity\":1,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2011_09_15\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"POLICY\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"SSL_Malicious_Cert\"],\"updated_at\":[\"2022_03_23\"]}},\"tls\":{\"subject\":\"C=--, ST=SomeState, L=SomeCity, O=SomeOrganization, OU=SomeOrganizationalUnit, CN=7C2E91E.online-server.cloud, Email=root@7C2E91E.online-server.cloud\",\"issuerdn\":\"C=--, ST=SomeState, L=SomeCity, O=SomeOrganization, OU=SomeOrganizationalUnit, CN=7C2E91E.online-server.cloud, Email=root@7C2E91E.online-server.cloud\",\"serial\":\"13:00\",\"fingerprint\":\"6e:f4:73:58:74:3d:0b:08:54:c9:f5:99:2f:40:4f:01:9c:f6:76:c7\",\"sni\":\"amictools.com\",\"version\":\"TLS 1.2\",\"notbefore\":\"2022-07-06T19:10:08\",\"notafter\":\"2023-07-06T19:10:08\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"0debd3853f330c574b05e0b6d882dc27\",\"string\":\"771,49200,65281-11\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":8,\"pkts_toclient\":5,\"bytes_toserver\":1336,\"bytes_toclient\":1911,\"start\":\"2023-11-30T13:40:18.273867+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-11-30T13:40:18Z","timestamp":1701351618,"ip_dst":{"addr":"Client IP","port":44392,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"213.171.212.210","port":443,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"severity":"high","alert":"ET POLICY Self Signed SSL Certificate (SomeOrganizationalUnit)","source":"{\"timestamp\":\"2023-11-30T13:40:18.481960+0000\",\"flow_id\":1156078775729441,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"213.171.212.210\",\"src_port\":443,\"dest_ip\":\"10.70.215.141\",\"dest_port\":44392,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2013659,\"rev\":6,\"signature\":\"ET POLICY Self Signed SSL Certificate (SomeOrganizationalUnit)\",\"category\":\"Potential Corporate Privacy Violation\",\"severity\":1,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"created_at\":[\"2011_09_15\"],\"deployment\":[\"Perimeter\"],\"former_category\":[\"POLICY\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"SSL_Malicious_Cert\"],\"updated_at\":[\"2022_03_23\"]}},\"tls\":{\"subject\":\"C=--, ST=SomeState, L=SomeCity, O=SomeOrganization, OU=SomeOrganizationalUnit, CN=7C2E91E.online-server.cloud, Email=root@7C2E91E.online-server.cloud\",\"issuerdn\":\"C=--, ST=SomeState, L=SomeCity, O=SomeOrganization, OU=SomeOrganizationalUnit, CN=7C2E91E.online-server.cloud, Email=root@7C2E91E.online-server.cloud\",\"serial\":\"13:00\",\"fingerprint\":\"6e:f4:73:58:74:3d:0b:08:54:c9:f5:99:2f:40:4f:01:9c:f6:76:c7\",\"sni\":\"amictools.com\",\"version\":\"TLS 1.2\",\"notbefore\":\"2022-07-06T19:10:08\",\"notafter\":\"2023-07-06T19:10:08\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"0debd3853f330c574b05e0b6d882dc27\",\"string\":\"771,49200,65281-11\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":8,\"pkts_toclient\":5,\"bytes_toserver\":1210,\"bytes_toclient\":1911,\"start\":\"2023-11-30T13:40:18.359713+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"amictools.com/download/AntiKeyloggerShieldSetup.exe/","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":80,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"2da4518f357c46f9a38d32b32bb7a97f","sha1":"e541d2d9334fc854b9dc234cd1da78f8f8a650cf","sha256":"3e8f1468c7f6284c9a6213926365555494eb447da13d731c9b08c7ca6e37cac0","sha512":"99709123430df8c61024267a2c0acbc8ad8bec74877afa59f153ca67e8d74fe3b10d20aa6ebf55a4eab424f34f657803e02e6ab323207efce3535d5f49658c84","ssdeep":"","tlshash":"4061879a3779388b317b14e3aa6f0e0beb76542716c4d035c9faa7141cb14a3c379d89","size":3284,"data":"","first_seen":"2023-11-30T14:40:35Z","last_seen":"2024-08-20T17:20:37.507071Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"amictools.com/download/AntiKeyloggerShieldSetup.exe/","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":80,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":true,"md5":"382baaa0b6a4b709817aa3d9a76cf798","sha1":"790e0412f8e01e83192ce7117731d4e07be8890b","sha256":"d8dd9e4bee02cb49c521217c4f44067b3dfa7d425f698fa8e90056c535188877","sha512":"26deba541f7ebe0bba1f7c3949122031ae1d9d8ed1d3481dc4f644900983ddcf453d89707aad6084b6e99965c4468044dd7bda913b9ef74bde3cc6a58e6b8dd6","ssdeep":"","tlshash":"64b002b975114d754a8e110d717dd3f43c780044f7433501d17c64492070dc69801e49","size":97,"data":"","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-04-06T08:11:16.761918Z","times_seen":4155,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"amictools.com/wp-content/themes/twentytwenty/assets/js/index.js?ver=2.3","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":80,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"e8fde5fa3fac2c06011808f4b4fe4eff","sha1":"9c792c9f7308e3d9f42781ed581d8c9a63f99135","sha256":"6a9c7d809cf7886b0418e90771e5cb9b0d04c7fa4da523ca397698c3a4b4de86","sha512":"67286838573f3f3a723a8930bfbf5a4345199767e00ac3b82b220e73de54fdd1cf3c0882c6400b0a6aceca334dbf2e138bd0e3f5dd97654d17d37a306755714a","ssdeep":"768:BafGo4tK/EKeFE3Ym85M+sKV6Ef4AFThKKgHhpTCZhJDOEuaPG9X:BPtK/EKeOom85M9KV6Ef4AFThKKgHhp9","tlshash":"cec28582ff9c237b406af26a961e52ccf73d50f9e445142a7cadc6581590c2502aeffa","size":26111,"data":"","first_seen":"2023-03-07T01:25:30Z","last_seen":"2026-03-31T04:37:10.453937Z","times_seen":688,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"amictools.com/download/AntiKeyloggerShieldSetup.exe","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":0,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-11-30T13:40:17.951Z","timestamp":1701351617951,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /download/AntiKeyloggerShieldSetup.exe HTTP/1.1\r\nHost: amictools.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Thu, 30 Nov 2023 13:40:13 GMT\r\nServer: Apache\r\nX-Powered-By: PHP/7.4.33\r\nX-Redirect-By: WordPress\r\nLocation: http://amictools.com/download/AntiKeyloggerShieldSetup.exe/\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T09:11:47.12615Z","times_seen":13415969,"resource_available":true,"data":null}},"time_used":80,"timings":{"blocked":0,"dns":0,"connect":35,"send":0,"wait":0,"receive":0,"ssl":43},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"amictools.com/download/AntiKeyloggerShieldSetup.exe/","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":80,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-11-30T13:40:18.469Z","timestamp":1701351618469,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /download/AntiKeyloggerShieldSetup.exe/ HTTP/1.1\r\nHost: amictools.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 30 Nov 2023 13:40:13 GMT\r\nServer: Apache\r\nX-Powered-By: PHP/7.4.33\r\nLink: \u003chttp://amictools.com/index.php?rest_route=/\u003e; rel=\"https://api.w.org/\"\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":36959,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (9745)","md5":"184cab47b1f84f2ab5bab5897e0370ed","sha1":"d7f3a4721df0a5f4724dfaded8246a240fd87e69","sha256":"5c47f51037be8003fbae08726f34918018cb67aa2edd966ff74775e0b20448fd","sha512":"9f0aae28ef6441cb95977b4ac9883cbd51bbcd128469a1632c2e39701ab284acc56bbeb00aea279a2cf2f9df25498de2b095deef6985781eed4753a0bc641f1f","ssdeep":"384:aCE0ykEkZdqZUaAFkWZv5fWzTgL25aA8wbKbYI+RLctYVU0F6Uj9XbGuiv36bhwk:u0BZdapmZv9Wviwt16UK31U","tlshash":"f2f20971e1bc18b7371f87eee050731639edaa38e90157b0f0f6a19827e4ca3506a55a","first_seen":"2023-11-30T14:40:35Z","last_seen":"2023-11-30T16:11:53Z","times_seen":2,"resource_available":false,"data":null}},"time_used":377,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":340,"receive":37,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"amictools.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":80,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://amictools.com/download/AntiKeyloggerShieldSetup.exe/","date":"2023-11-30T13:40:18.917Z","timestamp":1701351618917,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.1 HTTP/1.1\r\nHost: amictools.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://amictools.com/download/AntiKeyloggerShieldSetup.exe/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 30 Nov 2023 13:40:14 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 07 Nov 2023 22:30:31 GMT\r\nETag: \"1add3-6099784b084d4\"\r\nAccept-Ranges: bytes\r\nContent-Length: 110035\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":110035,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (57084)","md5":"99ab466e0866c823ae5db517d59cebd1","sha1":"5595a586cbd42b31377681b9d35293278d75d336","sha256":"698b89c0da3d319754d6a837b5e6d4e6a42dc402d9ffd7559b8c4cb29c644340","sha512":"d19932f64adbdb1286b61d472526fe0be92e5fcdbecf9df9c9dc607d46e26f8912c74294256f1a6b56d0fb14a774679407187eed011f4b5b7008981aa52f6df6","ssdeep":"1536:iLeJ2f9Zk2u5SOV+UQ3Zo/0kxhdRVrkQzE:iLeJgk2u5SOV+UQ3Zo/0kPdvQQzE","tlshash":"03b3405413f0dcf939fba73a5e5ee248a513aa41c64a6be7e076d190614ca490cf3b0f","first_seen":"2023-11-07T23:07:41Z","last_seen":"2026-04-05T23:51:18.593104Z","times_seen":8601,"resource_available":false,"data":null}},"time_used":76,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":41,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"amictools.com/wp-content/themes/twentytwenty/assets/js/index.js?ver=2.3","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":80,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"http://amictools.com/download/AntiKeyloggerShieldSetup.exe/","date":"2023-11-30T13:40:18.923Z","timestamp":1701351618923,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /wp-content/themes/twentytwenty/assets/js/index.js?ver=2.3 HTTP/1.1\r\nHost: amictools.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://amictools.com/download/AntiKeyloggerShieldSetup.exe/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 30 Nov 2023 13:40:14 GMT\r\nServer: Apache\r\nLast-Modified: Mon, 30 Oct 2023 10:22:11 GMT\r\nETag: \"65ff-608ec6943133f\"\r\nAccept-Ranges: bytes\r\nContent-Length: 26111\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":26111,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text","md5":"e8fde5fa3fac2c06011808f4b4fe4eff","sha1":"9c792c9f7308e3d9f42781ed581d8c9a63f99135","sha256":"6a9c7d809cf7886b0418e90771e5cb9b0d04c7fa4da523ca397698c3a4b4de86","sha512":"67286838573f3f3a723a8930bfbf5a4345199767e00ac3b82b220e73de54fdd1cf3c0882c6400b0a6aceca334dbf2e138bd0e3f5dd97654d17d37a306755714a","ssdeep":"768:BafGo4tK/EKeFE3Ym85M+sKV6Ef4AFThKKgHhpTCZhJDOEuaPG9X:BPtK/EKeOom85M9KV6Ef4AFThKKgHhp9","tlshash":"cec28582ff9c237b406af26a961e52ccf73d50f9e445142a7cadc6581590c2502aeffa","first_seen":"2023-03-07T01:25:30Z","last_seen":"2026-03-31T04:37:10.453937Z","times_seen":688,"resource_available":true,"data":null}},"time_used":137,"timings":{"blocked":30,"dns":1,"connect":36,"send":0,"wait":41,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"amictools.com/wp-content/themes/twentytwenty/style.css?ver=2.3","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":80,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://amictools.com/download/AntiKeyloggerShieldSetup.exe/","date":"2023-11-30T13:40:18.922Z","timestamp":1701351618922,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /wp-content/themes/twentytwenty/style.css?ver=2.3 HTTP/1.1\r\nHost: amictools.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://amictools.com/download/AntiKeyloggerShieldSetup.exe/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 30 Nov 2023 13:40:14 GMT\r\nServer: Apache\r\nLast-Modified: Mon, 30 Oct 2023 10:22:11 GMT\r\nETag: \"1dc60-608ec6943598f\"\r\nAccept-Ranges: bytes\r\nContent-Length: 121952\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":121952,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (2955)","md5":"b5671a999e0f106ee0b0b15072a55779","sha1":"5ee9eb546af2cab89a79c86b49a5f83f369fc6f8","sha256":"ebbae75d28d704275129d8a2c21d35403d6d82149e31bba0a20bb39e7db21e34","sha512":"a95ab0111ec1f43a452ce970df5b0e3e781024a2653282db3b90b790aa3609c5bf24b85c22ad70458a07fa9c58b185f2445752dbdce30cbd730b8f65aafc9ae9","ssdeep":"1536:SbYNN5Yjz1JrnT7dnR3wIYnHe7Q+++VGR6D8e9FShj4xfW:MYNQP42BK","tlshash":"c4c374551fa06cd0926fc366ae9de781d95c4194cf9fcecee463c924e28c28412edf4a","first_seen":"2023-10-28T13:28:10Z","last_seen":"2025-06-25T02:27:19.418119Z","times_seen":6,"resource_available":false,"data":null}},"time_used":215,"timings":{"blocked":27,"dns":0,"connect":35,"send":0,"wait":35,"receive":118,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"amictools.com/wp-content/themes/twentytwenty/print.css?ver=2.3","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":80,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"http://amictools.com/download/AntiKeyloggerShieldSetup.exe/","date":"2023-11-30T13:40:19.121Z","timestamp":1701351619121,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /wp-content/themes/twentytwenty/print.css?ver=2.3 HTTP/1.1\r\nHost: amictools.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://amictools.com/download/AntiKeyloggerShieldSetup.exe/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 30 Nov 2023 13:40:14 GMT\r\nServer: Apache\r\nLast-Modified: Mon, 30 Oct 2023 10:22:11 GMT\r\nETag: \"a8e-608ec69434607\"\r\nAccept-Ranges: bytes\r\nContent-Length: 2702\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2702,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"a5bf76d89698e8a80718572e6d63b694","sha1":"412adabd76165ae4b3de9516054743d43b20372c","sha256":"3a6e534ba6c925e8646018b5b7133e0e42fa33c8d67bd104e7b0f2521bcdf595","sha512":"7f63e6bd3503033d2bc7ccb15551ff5b5bf34a2627d169e998b1e38178267257ebb084e4080910542432d0d0127efa6eccf62020ee5276e999354b2f26a17456","ssdeep":"","tlshash":"f8519c997cf525503622e63960ff2290e43ad417c282fcd9b9d89328dfac322947c78d","first_seen":"2023-04-05T23:58:17Z","last_seen":"2026-04-05T13:13:18.359753Z","times_seen":645,"resource_available":false,"data":null}},"time_used":36,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":35,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"amictools.com/wp-content/themes/twentytwenty/assets/fonts/inter/Inter-upright-var.woff2","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":80,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"font","requested_by":"http://amictools.com/download/AntiKeyloggerShieldSetup.exe/","date":"2023-11-30T13:40:19.152Z","timestamp":1701351619152,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /wp-content/themes/twentytwenty/assets/fonts/inter/Inter-upright-var.woff2 HTTP/1.1\r\nHost: amictools.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://amictools.com/wp-content/themes/twentytwenty/style.css?ver=2.3\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 30 Nov 2023 13:40:14 GMT\r\nServer: Apache\r\nLast-Modified: Mon, 30 Oct 2023 10:22:11 GMT\r\nETag: \"36a94-608ec69430787\"\r\nAccept-Ranges: bytes\r\nContent-Length: 223892\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":223892,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 223892, version 1.0\\012- data","md5":"2f136faf2d0ef6368898d1a515ab707c","sha1":"81dbe45ccd7fae3a0a298c5c166b4317c985f538","sha256":"e03c2df7ef439d2708bbc168a21c0a00da63e5664d286120c994c39644addd03","sha512":"101987a2a66af01ed0c606bb77eee816437b5867c13baa43a407850efca4ceee016e98058c671ecf6ebe71bc080f01149f39287c32d3a0ee9c11266461469a7e","ssdeep":"6144:5m4/XjDCEXvILq89p5NOlpBRLCpHJfd1UxgXnQSVxkv:Hp/bsKBRupHJ11UulK","tlshash":"ac2423f545f36c03e0a32794dd7ee83a21bd9f8892e281c4f66947c470baac89347569","first_seen":"2023-04-19T20:24:59Z","last_seen":"2026-04-06T07:31:32.368801Z","times_seen":2046,"resource_available":false,"data":null}},"time_used":115,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":36,"receive":79,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"amictools.com/favicon.ico","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":80,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://amictools.com/download/AntiKeyloggerShieldSetup.exe/","date":"2023-11-30T13:40:19.271Z","timestamp":1701351619271,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: amictools.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://amictools.com/download/AntiKeyloggerShieldSetup.exe/\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 301 Moved Permanently\r\nDate: Thu, 30 Nov 2023 13:40:14 GMT\r\nServer: Apache\r\nX-Powered-By: PHP/7.4.33\r\nX-Redirect-By: WordPress\r\nLocation: http://amictools.com/favicon.ico/\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-06T09:11:47.12615Z","times_seen":13415969,"resource_available":true,"data":null}},"time_used":162,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":162,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"amictools.com/favicon.ico/","fqdn":"amictools.com","domain":"amictools.com","tld":"com"},"ip":{"addr":"213.171.212.210","port":80,"asn":8560,"as":"IONOS SE","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://amictools.com/download/AntiKeyloggerShieldSetup.exe/","date":"2023-11-30T13:40:19.439Z","timestamp":1701351619439,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico/ HTTP/1.1\r\nHost: amictools.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nReferer: http://amictools.com/download/AntiKeyloggerShieldSetup.exe/\r\nDNT: 1\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 30 Nov 2023 13:40:14 GMT\r\nServer: Apache\r\nX-Powered-By: PHP/7.4.33\r\nLink: \u003chttp://amictools.com/index.php?rest_route=/\u003e; rel=\"https://api.w.org/\"\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nTransfer-Encoding: chunked\r\nContent-Type: text/html; charset=UTF-8\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":36959,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (9745)","md5":"184cab47b1f84f2ab5bab5897e0370ed","sha1":"d7f3a4721df0a5f4724dfaded8246a240fd87e69","sha256":"5c47f51037be8003fbae08726f34918018cb67aa2edd966ff74775e0b20448fd","sha512":"9f0aae28ef6441cb95977b4ac9883cbd51bbcd128469a1632c2e39701ab284acc56bbeb00aea279a2cf2f9df25498de2b095deef6985781eed4753a0bc641f1f","ssdeep":"384:aCE0ykEkZdqZUaAFkWZv5fWzTgL25aA8wbKbYI+RLctYVU0F6Uj9XbGuiv36bhwk:u0BZdapmZv9Wviwt16UK31U","tlshash":"f2f20971e1bc18b7371f87eee050731639edaa38e90157b0f0f6a19827e4ca3506a55a","first_seen":"2023-11-30T14:40:35Z","last_seen":"2023-11-30T16:11:53Z","times_seen":2,"resource_available":false,"data":null}},"time_used":310,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":296,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}