IP 104.18.15.101:0
Hash cab36044ec201294f9de8c18621ee4c4
006a9a23c00e58e810027cc75eea565555ff705c
081a62a7015a1c029103f36baa570a3ede20f37b1e15590312f574df3bc55f77
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Jun 2023 05:00:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 30 May 2023 07:03:15 GMT
Expires: Tue, 06 Jun 2023 07:03:14 GMT
Etag: "006a9a23c00e58e810027cc75eea565555ff705c"
Cache-Control: max-age=438779,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d04e4506e09b50f-OSL
morrodkfg.host/a/aol/logs/emails.txt
68.65.122.76200 OK 401 B URL User Request GET HTTP/2 morrodkfg.host/a/aol/logs/emails.txt
IP 68.65.122.76:443
Certificate IssuerSectigo Limited
Subjectmorrodkfg.host
FingerprintA0:0E:49:EE:DE:15:AA:E2:94:D3:53:83:B2:F9:94:29:62:6C:9C:17
ValidityTue, 26 Jul 2022 00:00:00 GMT - Wed, 26 Jul 2023 23:59:59 GMT
Hash e77f7686e3ed04adde3a724fc19ed6b0
5e7e2ce479cb3f15155b18159b86f28230ea81af
59928587bc8de0a5886d3c68a28f091a83b0c9660783a089f8874529bfe2ddfa
Analyzer Verdict Alert urlquery malicious Malicious - Possible disclosure of sensitive information
GET /a/aol/logs/emails.txt HTTP/1.1
Host: morrodkfg.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain
last-modified: Thu, 25 May 2023 15:02:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 401
date: Thu, 01 Jun 2023 05:00:14 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
morrodkfg.host/favicon.ico
68.65.122.76404 Not Found 1.2 kB URL GET HTTP/2 morrodkfg.host/favicon.ico
IP 68.65.122.76:443
Requested by https://morrodkfg.host/a/aol/logs/emails.txt
Certificate IssuerSectigo Limited
Subjectmorrodkfg.host
FingerprintA0:0E:49:EE:DE:15:AA:E2:94:D3:53:83:B2:F9:94:29:62:6C:9C:17
ValidityTue, 26 Jul 2022 00:00:00 GMT - Wed, 26 Jul 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /favicon.ico HTTP/1.1
Host: morrodkfg.host
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://morrodkfg.host/a/aol/logs/emails.txt
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Thu, 01 Jun 2023 05:00:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2