sideworkcreative.com/js/dd.exe
40.121.16.151307 Moved Temporarily 165 B URL User Request GET HTTP/1.1 sideworkcreative.com/js/dd.exe
IP 40.121.16.151:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subjectwww.sideworkcreative.com
FingerprintB7:7B:D6:EF:12:8C:DA:FC:D9:5A:7F:B0:94:7C:B4:0D:B2:35:13:AD
ValidityThu, 01 Sep 2022 00:00:00 GMT - Mon, 02 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ea703a24216bf10bc7339af92e345b8c
2dce8634f4d0d9a934801490926a28d9a45dd1a9
3a5fe2d0c4113e61378d1adb125f99ae1493ae58a357f3be5d7df5244cddc03e
GET /js/dd.exe HTTP/1.1
Host: sideworkcreative.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Moved Temporarily
Content-Type: text/html; charset=UTF-8
Location: https://www.sideworkcreative.com/js/dd.exe
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Fri, 09 Jun 2023 05:03:59 GMT
Content-Length: 165
www.sideworkcreative.com/js/dd.exe
40.121.16.151404 Not Found 1.2 kB URL User Request GET HTTP/1.1 www.sideworkcreative.com/js/dd.exe
IP 40.121.16.151:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subjectwww.sideworkcreative.com
FingerprintB7:7B:D6:EF:12:8C:DA:FC:D9:5A:7F:B0:94:7C:B4:0D:B2:35:13:AD
ValidityThu, 01 Sep 2022 00:00:00 GMT - Mon, 02 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
NIDS Severity Alert suricata medium ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile
GET /js/dd.exe HTTP/1.1
Host: www.sideworkcreative.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Fri, 09 Jun 2023 05:04:00 GMT
Content-Length: 1245
www.sideworkcreative.com/js/dd.exe
40.121.16.151404 Not Found 165 B URL User Request GET HTTP/1.1 www.sideworkcreative.com/js/dd.exe
IP 40.121.16.151:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subjectwww.sideworkcreative.com
FingerprintB7:7B:D6:EF:12:8C:DA:FC:D9:5A:7F:B0:94:7C:B4:0D:B2:35:13:AD
ValidityThu, 01 Sep 2022 00:00:00 GMT - Mon, 02 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ea703a24216bf10bc7339af92e345b8c
2dce8634f4d0d9a934801490926a28d9a45dd1a9
3a5fe2d0c4113e61378d1adb125f99ae1493ae58a357f3be5d7df5244cddc03e
NIDS Severity Alert suricata medium ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile
GET /js/dd.exe HTTP/1.1
Host: www.sideworkcreative.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Redirect
Content-Type: text/html; charset=UTF-8
Location: https://www.sideworkcreative.com/js/dd.exe
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Fri, 09 Jun 2023 05:04:00 GMT
Content-Length: 165
www.sideworkcreative.com/js/dd.exe
40.121.16.151404 Not Found 1.2 kB URL User Request GET HTTP/1.1 www.sideworkcreative.com/js/dd.exe
IP 40.121.16.151:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subjectwww.sideworkcreative.com
FingerprintB7:7B:D6:EF:12:8C:DA:FC:D9:5A:7F:B0:94:7C:B4:0D:B2:35:13:AD
ValidityThu, 01 Sep 2022 00:00:00 GMT - Mon, 02 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
NIDS Severity Alert suricata medium ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile
GET /js/dd.exe HTTP/1.1
Host: www.sideworkcreative.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Fri, 09 Jun 2023 05:04:00 GMT
Content-Length: 1245
www.sideworkcreative.com/favicon.ico
40.121.16.151404 Not Found 1.2 kB URL GET HTTP/1.1 www.sideworkcreative.com/favicon.ico
IP 40.121.16.151:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.sideworkcreative.com/js/dd.exe
Certificate IssuerDigiCert Inc
Subjectwww.sideworkcreative.com
FingerprintB7:7B:D6:EF:12:8C:DA:FC:D9:5A:7F:B0:94:7C:B4:0D:B2:35:13:AD
ValidityThu, 01 Sep 2022 00:00:00 GMT - Mon, 02 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /favicon.ico HTTP/1.1
Host: www.sideworkcreative.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sideworkcreative.com/js/dd.exe
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Fri, 09 Jun 2023 05:04:00 GMT
Content-Length: 1245