{"report_id":"cb8d169f-4e00-4b2f-aa41-aae32b733462","version":6,"status":"done","tags":[],"date":"2024-07-25T21:49:29Z","url":{"schema":"http","addr":"dl.devmate.com/com.softorino.mo2win/MemoryOptimizer2.exe","fqdn":"dl.devmate.com","domain":"devmate.com","tld":"com"},"ip":{"addr":"172.64.149.50","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"final":{"url":{"schema":"about","addr":"about:privatebrowsing","fqdn":"","domain":"","tld":""},"title":"about:privatebrowsing"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T08:17:13Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"r10.o.lencr.org","ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2020-06-29","domain_rank":0,"first_seen":"2024-06-06 21:45:11","last_seen":"2024-07-25 18:12:06","alert_count":0,"request_count":8,"received_data":7104,"sent_data":2616,"comment":"","tags":null,"fingerprints":null},{"fqdn":"dl.devmate.com","ip":{"addr":"172.64.149.50","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2002-09-01","domain_rank":475858,"first_seen":"2013-05-18 16:54:13","last_seen":"2024-07-04 06:58:13","alert_count":1,"request_count":1,"received_data":2957414,"sent_data":510,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":[{"md5":"ad74a1316dc413dfcc606664406a8f74","sha1":"2ec9956d495df93e457bab732715a8d7c48ada61","sha256":"cd492b8eba77421266330572daa56d8261f420d48602cc0e172c61b3345c32db","sha512":"48b4053799aedc4fd5709beadf0141c5e15c862c6bcf0d0cfa1bbd8d829906239d9fc1c5a4e4366ed8c8eef9a07c8668dd9025eba66b03e21f36c53418bd6073","magic":"PE32 executable (GUI) Intel 80386, for MS Windows, 8 sections","size":2956328,"url":{"schema":"https","addr":"dl.devmate.com/com.softorino.mo2win/MemoryOptimizer2.exe","fqdn":"dl.devmate.com","domain":"devmate.com","tld":"com"},"ip":{"addr":"172.64.149.50","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"archive":null,"alerts":{"urlquery":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2021-11-03","alert":"Scan result 2/66","trigger":"cd492b8eba77421266330572daa56d8261f420d48602cc0e172c61b3345c32db","verdict":"suspicious","severity":"","comment":"suspicious - 2/66","link":"https://www.virustotal.com/gui/file/cd492b8eba77421266330572daa56d8261f420d48602cc0e172c61b3345c32db","meta":null}]}}],"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-25T21:48:28.75012816Z","timestamp":1721944108750,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"523BC00BCD3CC12A640EBCE3DF80C0AED9FC552C4BE5BAE1831C00B9027CE0C0\"\r\nLast-Modified: Wed, 24 Jul 2024 18:56:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=13397\r\nExpires: Fri, 26 Jul 2024 01:31:45 GMT\r\nDate: Thu, 25 Jul 2024 21:48:28 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"577f20b1ad1240dc12215f4d93e53b8f","sha1":"4fb6d79b9c4adb8f712073e9662ceae41a4f097c","sha256":"523bc00bcd3cc12a640ebce3df80c0aed9fc552c4be5bae1831c00b9027ce0c0","sha512":"5c1c70fa9ba0fd14d4358bdd2519f73dc5b4d45fb5b68ea74625e244f9890144edc1aa2394beb3826e4aa3bae09a97cc2298f448ecb59c2fb5daa086b6fa68d6","ssdeep":"","tlshash":"cef0055714e13e41b7700f053ad583665e24bebc78884da07b0106d1bc10b755d8949b","first_seen":"2024-07-25T11:43:35Z","last_seen":"2024-08-19T15:48:41.475263Z","times_seen":24726,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-25T21:48:28.80031608Z","timestamp":1721944108800,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"F5C60F75B60EB8EF8E42E66FCAD10E8DF5759FE29BAD30A23871FB7C1DA61456\"\r\nLast-Modified: Wed, 24 Jul 2024 18:27:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=21405\r\nExpires: Fri, 26 Jul 2024 03:45:13 GMT\r\nDate: Thu, 25 Jul 2024 21:48:28 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"21fba4953d0a666a4844d872097cb8f4","sha1":"80ac64ff700d5d02eb9901123ecd64f02c9e3ec2","sha256":"f5c60f75b60eb8ef8e42e66fcad10e8df5759fe29bad30a23871fb7c1da61456","sha512":"5775c4fca80e14bc452870e062cba86afd1213566a4293f7a240171eb0dc219d2b70747f0acb7e68461607d57cad00f6ede65777f8411dbc7a1e1236381e8827","ssdeep":"","tlshash":"9ff00e4a0b9c7d01ba7248014db9c18f6c32abe8b8a544c124e105e2b440ba589dc59b","first_seen":"2024-07-25T06:19:33Z","last_seen":"2024-08-19T15:50:05.460618Z","times_seen":18914,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-25T21:48:29.164043659Z","timestamp":1721944109164,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"62CC974E51B62480F576B53853F8F24BFC873687C02BC23C1713956D4B96C0B1\"\r\nLast-Modified: Wed, 24 Jul 2024 18:58:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=12185\r\nExpires: Fri, 26 Jul 2024 01:11:34 GMT\r\nDate: Thu, 25 Jul 2024 21:48:29 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"8f4e7b75de1ed909fa79bbcdafccceac","sha1":"274c1ea75520a0ea06e19a7e692c034baae2cdc1","sha256":"62cc974e51b62480f576b53853f8f24bfc873687c02bc23c1713956d4b96c0b1","sha512":"56c2599a72cf92cfc234db0bce2a864b66fcc1950fa46d33f33e953adf36dae6f42d899e53d0fa50db988d8e11fbd3a3b429c53636ac1c5c1bb1782e81b995d1","ssdeep":"","tlshash":"30f075c20a4dbec6f27c241248b0c5193b106db524096ff7268443ce2c00fed18c004e","first_seen":"2024-07-25T12:07:56Z","last_seen":"2024-08-19T15:48:40.025065Z","times_seen":21385,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.33.119.27","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-25T21:48:29.241030003Z","timestamp":1721944109241,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"77F9D9AFCB4A72B62085FA7CA04ADB0007EDAEC1AB4BDE5C4B82272A786A6CAD\"\r\nLast-Modified: Wed, 24 Jul 2024 18:57:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=12481\r\nExpires: Fri, 26 Jul 2024 01:16:30 GMT\r\nDate: Thu, 25 Jul 2024 21:48:29 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"b1e4e1a92df74669a74711c4eaef2acc","sha1":"a26f28116849cc857a0e31e3495f659e0cd36ac4","sha256":"77f9d9afcb4a72b62085fa7ca04adb0007edaec1ab4bde5c4b82272a786a6cad","sha512":"ba283f40203658ce37955535594777cf7d0a287b2ee56f96600c7c18387f346ddf051f6a67e73d42ebbfe9da6dfee1b0a0091da58bc907fdd26c821548d20ffb","ssdeep":"","tlshash":"eef0055119517c91f26105031cd5da2b3d345a9f746c08c318d149961950faf226d1cf","first_seen":"2024-07-24T22:20:10Z","last_seen":"2024-08-19T15:52:01.150142Z","times_seen":20820,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"dl.devmate.com/com.softorino.mo2win/MemoryOptimizer2.exe","fqdn":"dl.devmate.com","domain":"devmate.com","tld":"com"},"ip":{"addr":"172.64.149.50","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-07-25T21:48:29.361Z","timestamp":1721944109361,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"devmate.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 21 Jul 2024 22:27:32 GMT","end":"Sat, 19 Oct 2024 22:27:31 GMT"},"fingerprint":{"sha1":"77:28:67:45:8B:81:09:9A:46:1A:CE:28:E6:D7:81:96:31:15:D9:94","sha256":"90:F4:11:3F:8A:5E:BC:05:59:14:FE:0F:78:2C:D8:69:05:86:8C:D8:9B:3E:01:9C:0D:14:12:0E:5A:19:D6:D7"}}},"request":{"raw":"GET /com.softorino.mo2win/MemoryOptimizer2.exe HTTP/1.1\r\nHost: dl.devmate.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 25 Jul 2024 21:48:30 GMT\r\ncontent-type: application/octet-stream\r\ncontent-length: 2956328\r\nlast-modified: Fri, 13 Dec 2019 18:33:36 GMT\r\nx-amz-version-id: Juw9_e3.Y4LG01DPqaZH9MYAjvVt57AW\r\netag: \"ad74a1316dc413dfcc606664406a8f74\"\r\nx-cache: Miss from cloudfront\r\nvia: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-C1\r\nx-amz-cf-id: QE5rqSoIgbizhMEYUptkh9XAXEQHlrnqDpVn_iR1_b87rk5UhMUVIg==\r\ncf-cache-status: MISS\r\nexpires: Fri, 26 Jul 2024 01:48:30 GMT\r\ncache-control: public, max-age=14400\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\nset-cookie: __cf_bm=hN9TuffaZL3ZTI8msNnHaFu5p017ijzTjBLATUkDTcM-1721944110-1.0.1.1-vNxySaknuP5isexWxO35YRXyDShmCECpRDSI14nRDXalgS4Q6LgStDJqlUS0wJsxQfUVkRTrA1SW9SOxzpzAPg; path=/; expires=Thu, 25-Jul-24 22:18:30 GMT; domain=.devmate.com; HttpOnly; Secure; SameSite=None\n_cfuvid=WV6S7MRqCnZoSXOs1QxD_h8mJQKaX.jBrJBPLJvwz1g-1721944110102-0.0.1.1-604800000; path=/; domain=.devmate.com; HttpOnly; Secure; SameSite=None\r\nserver: cloudflare\r\ncf-ray: 8a8f5abb9e1556b4-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2956328,"size_decoded":2956328,"mime_type":"application/octet-stream","magic":"PE32 executable (GUI) Intel 80386, for MS Windows, 8 sections","md5":"ad74a1316dc413dfcc606664406a8f74","sha1":"2ec9956d495df93e457bab732715a8d7c48ada61","sha256":"cd492b8eba77421266330572daa56d8261f420d48602cc0e172c61b3345c32db","sha512":"48b4053799aedc4fd5709beadf0141c5e15c862c6bcf0d0cfa1bbd8d829906239d9fc1c5a4e4366ed8c8eef9a07c8668dd9025eba66b03e21f36c53418bd6073","ssdeep":"49152:5iOy6Pye3kw5kUpwcp3xCdASMZ98z5zraTHKqt9TZP5winfTynA509xhoBh0yaCO:/PlUwG9cFxVmiK4TZP2ifTVQxkh/pO","tlshash":"77d53343f7c30036f596ca318cb8a450ae0739b416fab5193dfcd60e8d759e50a79ba2","first_seen":"2024-02-02T20:36:58Z","last_seen":"2024-08-20T10:25:38.087547Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1532,"timings":{"blocked":19,"dns":1,"connect":1,"send":0,"wait":725,"receive":761,"ssl":22},"alerts":{"ids":null,"analyzer":[{"sensor_name":"virustotal","sensor_type":"file","title":"","description":"VirusTotal","scan_date":"2021-11-03","alert":"Scan result 2/66","trigger":"cd492b8eba77421266330572daa56d8261f420d48602cc0e172c61b3345c32db","verdict":"suspicious","severity":"","comment":"suspicious - 2/66","link":"https://www.virustotal.com/gui/file/cd492b8eba77421266330572daa56d8261f420d48602cc0e172c61b3345c32db","meta":null}],"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-25T21:48:31.341403353Z","timestamp":1721944111341,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"5D153B40D51555B8F2717F7E56BFBE3BE25B1B38A18B31715EEA4DDFF345F98A\"\r\nLast-Modified: Wed, 24 Jul 2024 18:27:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=21071\r\nExpires: Fri, 26 Jul 2024 03:39:41 GMT\r\nDate: Thu, 25 Jul 2024 21:48:30 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"91392416ed946eb8b26810ff46d7e57e","sha1":"8ce21a441df1ac09da4ebf098eaf47e2d74bbff0","sha256":"5d153b40d51555b8f2717f7e56bfbe3be25b1b38a18b31715eea4ddff345f98a","sha512":"f3793edb952563bc5b352035ba10c7f412968caefcd4463820b163a53fac04d7190dac3178954f0a714481ad978549daaea6761a91079a3f1816e446f7d279fe","ssdeep":"","tlshash":"b7f00e571adabc81169b020bae98c52f3d207bfe349505eba8f142c168037de420446c","first_seen":"2024-07-25T07:05:09Z","last_seen":"2024-08-19T15:49:52.526076Z","times_seen":23918,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-25T21:48:31.342939536Z","timestamp":1721944111342,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"5D153B40D51555B8F2717F7E56BFBE3BE25B1B38A18B31715EEA4DDFF345F98A\"\r\nLast-Modified: Wed, 24 Jul 2024 18:27:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=21071\r\nExpires: Fri, 26 Jul 2024 03:39:41 GMT\r\nDate: Thu, 25 Jul 2024 21:48:30 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"91392416ed946eb8b26810ff46d7e57e","sha1":"8ce21a441df1ac09da4ebf098eaf47e2d74bbff0","sha256":"5d153b40d51555b8f2717f7e56bfbe3be25b1b38a18b31715eea4ddff345f98a","sha512":"f3793edb952563bc5b352035ba10c7f412968caefcd4463820b163a53fac04d7190dac3178954f0a714481ad978549daaea6761a91079a3f1816e446f7d279fe","ssdeep":"","tlshash":"b7f00e571adabc81169b020bae98c52f3d207bfe349505eba8f142c168037de420446c","first_seen":"2024-07-25T07:05:09Z","last_seen":"2024-08-19T15:49:52.526076Z","times_seen":23918,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-25T21:48:31.344401415Z","timestamp":1721944111344,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"5D153B40D51555B8F2717F7E56BFBE3BE25B1B38A18B31715EEA4DDFF345F98A\"\r\nLast-Modified: Wed, 24 Jul 2024 18:27:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=21071\r\nExpires: Fri, 26 Jul 2024 03:39:41 GMT\r\nDate: Thu, 25 Jul 2024 21:48:30 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"91392416ed946eb8b26810ff46d7e57e","sha1":"8ce21a441df1ac09da4ebf098eaf47e2d74bbff0","sha256":"5d153b40d51555b8f2717f7e56bfbe3be25b1b38a18b31715eea4ddff345f98a","sha512":"f3793edb952563bc5b352035ba10c7f412968caefcd4463820b163a53fac04d7190dac3178954f0a714481ad978549daaea6761a91079a3f1816e446f7d279fe","ssdeep":"","tlshash":"b7f00e571adabc81169b020bae98c52f3d207bfe349505eba8f142c168037de420446c","first_seen":"2024-07-25T07:05:09Z","last_seen":"2024-08-19T15:49:52.526076Z","times_seen":23918,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"r10.o.lencr.org/","fqdn":"r10.o.lencr.org","domain":"lencr.org","tld":"org"},"ip":{"addr":"23.36.77.32","port":0,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2024-07-25T21:48:31.345823282Z","timestamp":1721944111345,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: r10.o.lencr.org\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 85\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx\r\nContent-Type: application/ocsp-response\r\nContent-Length: 504\r\nETag: \"5D153B40D51555B8F2717F7E56BFBE3BE25B1B38A18B31715EEA4DDFF345F98A\"\r\nLast-Modified: Wed, 24 Jul 2024 18:27:00 UTC\r\nCache-Control: public, no-transform, must-revalidate, max-age=21071\r\nExpires: Fri, 26 Jul 2024 03:39:41 GMT\r\nDate: Thu, 25 Jul 2024 21:48:30 GMT\r\nConnection: keep-alive\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":504,"size_decoded":504,"mime_type":"application/octet-stream","magic":"data","md5":"91392416ed946eb8b26810ff46d7e57e","sha1":"8ce21a441df1ac09da4ebf098eaf47e2d74bbff0","sha256":"5d153b40d51555b8f2717f7e56bfbe3be25b1b38a18b31715eea4ddff345f98a","sha512":"f3793edb952563bc5b352035ba10c7f412968caefcd4463820b163a53fac04d7190dac3178954f0a714481ad978549daaea6761a91079a3f1816e446f7d279fe","ssdeep":"","tlshash":"b7f00e571adabc81169b020bae98c52f3d207bfe349505eba8f142c168037de420446c","first_seen":"2024-07-25T07:05:09Z","last_seen":"2024-08-19T15:49:52.526076Z","times_seen":23918,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}