{"report_id":"d751ab08-9e26-4db0-99f9-b02e053b2555","version":6,"status":"done","tags":[],"date":"2026-04-10T21:31:33Z","url":{"schema":"http","addr":"www.offerredeemer.com","fqdn":"www.offerredeemer.com","domain":"offerredeemer.com","tld":"com"},"ip":{"addr":"64.29.17.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"www.offerredeemer.com/","fqdn":"www.offerredeemer.com","domain":"offerredeemer.com","tld":"com"},"title":"Cash Balance - Verified by TikTok","dom":{"size":21480,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (6676)","md5":"66ac5a8137515ec8b1ce2d69cd0fbb18","sha1":"637d5bc7b51d7fa1b05e2ef8691410bc8907211c","sha256":"03aa47d62975e34d0910ee77755dd934455c962954b6ed6995be160b4a7b17a1","sha512":"b1b03db277f16a99f829a3c4679d7082f8729427ec228b84b3f1b80cdd871748154dd5a477f2343009b7a86a27de3bf09ccbf6bab61865d972b4bfefc70208e8","ssdeep":"384:hRsujE9DKG5FLL3BKcQLMoqNSKtwf+ShS/j8nzM/SdWaBMEDhGEo2SVG3aZ4kMs3:QT9DNFLL3BKcQLMowSK6f+ShS/j8nzM9","tlshash":"c4a283a7514310226a4765b237bb0b4b35bb4a43e6878d39bbbc530c4fc9da19b0336d","dom_hash":"domhashee7175af13aff6a338f24b9b0a675c63","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"www.offerredeemer.com","fqdn":"www.offerredeemer.com","domain":"offerredeemer.com","tld":"com"},"ip":{"addr":"64.29.17.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-15T21:31:33Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"www.offerredeemer.com","ip":{"addr":"64.29.17.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":15230,"sent_data":939,"comment":"","tags":null,"fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"raw.githubusercontent.com","ip":{"addr":"185.199.108.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2014-02-06","domain_rank":22021,"first_seen":"2014-03-01T07:08:08Z","last_seen":"2026-04-08T18:39:24.484759Z","alert_count":0,"request_count":1,"received_data":57872,"sent_data":490,"comment":"","tags":null,"fingerprints":[{"name":"GitHub Pages","description":"GitHub Pages is a static site hosting service.","website":"https://pages.github.com/","common_platform_enumeration":"","icon":"GitHub.svg","categories":["PaaS"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Fastly","description":"Fastly is a cloud computing services provider. Fastly's cloud platform provides a content delivery network, Internet security services, load balancing, and video \u0026 streaming services.","website":"https://www.fastly.com","common_platform_enumeration":"","icon":"Fastly.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.offerredeemer.com/","fqdn":"www.offerredeemer.com","domain":"offerredeemer.com","tld":"com"},"ip":{"addr":"64.29.17.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"b4bd4008b1ed18917b7bbacc1e7e04d3","sha1":"963354ba0d1b14b6ed2a5004dede67c7a480f3aa","sha256":"1aac0abc8a8d02621602829ddd263f6ec4c0d1dbfb5496c0a042bb6f5a0d4913","sha512":"476a541694e00ed5461e078be40d1cdab1ee9c780228fa69b38dc8eaed5eaafe872c189dd5a8f637564db8b61594b7fafd1fb937fd3d57aec72e38447bae40c1","ssdeep":"","tlshash":"ce1165a838fc549c436a92ab357fdf4c822d91174c80cc48c50dc5150835e6bd492dbb","size":1029,"data":"","first_seen":"2026-04-10T21:31:48.176596Z","last_seen":"2026-04-10T21:33:29.688468Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.offerredeemer.com/","fqdn":"www.offerredeemer.com","domain":"offerredeemer.com","tld":"com"},"ip":{"addr":"64.29.17.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"582cd91907f71f08373f0083db5544e1","sha1":"cfbd5605343e0f07104d74f0720c063fc7afab06","sha256":"cf1eeb8ac2443cdfdf85574e02eec9142f1ed87a77f93d9ad315cbe783b8b270","sha512":"0f9d63d5466fe8ac71cbbd1d21b57d238c4a941e6b34ace7af5c48d08c643bdbce3a2438e0a586283d3f6a337869e3e392eea4ed4341f65962edc63745a47637","ssdeep":"48:InzVRTXZpxGy+nirg9Vb7rW8vofS5pMWmp+RW8oTCgVt/P8hL7j9LeJT28iGPDtk:kRtV+iuVb7rnScE8ToTCF7xLeYSJk","tlshash":"879151da62e201312be7a1b30fab114a21735157ac469c11bbdec7044feab42f7a359c","size":4377,"data":"","first_seen":"2026-04-10T21:31:48.177538Z","last_seen":"2026-04-10T21:33:29.689544Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.offerredeemer.com/","fqdn":"www.offerredeemer.com","domain":"offerredeemer.com","tld":"com"},"ip":{"addr":"64.29.17.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"e52a6a824b615acb4a7c7e66bdc03452","sha1":"e5d48d56a9c031d8be70bf24796047efb976876c","sha256":"1fb80bef8e050eba6680f8716bf6d88623ac54d25b2c05cef5027a6ea66f0be4","sha512":"52430587484db057edb5aff09bfcddee69a9295a4da30e23fba9200ad2266fabf83f12ac680057e40e3a84324d36f0cf29fe39e6f136a15d15abd92e52f43cfb","ssdeep":"","tlshash":"d2f0e53f436416f79e6b7859ca4076803a16107b0142e8113f1cd8875fccfab4db3a85","size":493,"data":"","first_seen":"2026-04-10T21:31:48.179642Z","last_seen":"2026-04-10T21:33:29.690706Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"www.offerredeemer.com/","fqdn":"www.offerredeemer.com","domain":"offerredeemer.com","tld":"com"},"ip":{"addr":"64.29.17.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-10T21:31:11.537Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.offerredeemer.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Feb 2026 22:07:23 GMT","end":"Fri, 08 May 2026 22:07:22 GMT"},"fingerprint":{"sha1":"F5:91:A2:02:55:5F:8E:38:97:B3:D9:69:0E:B0:45:DF:81:E0:3B:17","sha256":"2F:3A:1A:19:59:FD:FF:EC:80:75:39:19:F3:B6:99:01:D1:D7:98:04:2C:B2:05:1B:82:E6:40:A1:2A:40:00:11"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.offerredeemer.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 43029\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Fri, 10 Apr 2026 21:31:11 GMT\r\netag: W/\"a0021c2c197487732fe0c95e08e35939\"\r\nlast-modified: Fri, 10 Apr 2026 09:34:02 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-id: arn1::r5hg4-1775856671627-43bac01783b9\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":14332,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (438)","md5":"a0021c2c197487732fe0c95e08e35939","sha1":"f6a3a789eb9098d720d7f018f457c832d478a410","sha256":"7c9fd29a9c1d4ff251caddfc95fbd8dbb5317d73ff681251e4a503ad68645ea1","sha512":"ddc4e5051565cc30e1602518e616a23be80f221a8c8ec26d2af9006402c9d630053b8ce3e42cc691a0ae67a1d75d7f314c13f42d285cc22bc1c9846c2a28c4f4","ssdeep":"192:PR9+kjeiLOfEJKFMDR92r56+wk80wGHcbJY7NcifIM8cRxdh1UhrePHXeAmRRtoa:PRvjE9DKG5FLL3BBeAmBcX7/EE6P","tlshash":"ea52a69a21e300223ad7a1b62ff7174d22b7c107d947cc197bdd83488fdda95ea93648","first_seen":"2026-04-10T21:31:48.16956Z","last_seen":"2026-04-10T21:33:29.680989Z","times_seen":2,"resource_available":true,"data":null}},"time_used":183,"timings":{"blocked":86,"dns":36,"connect":1,"send":0,"wait":10,"receive":0,"ssl":46},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raw.githubusercontent.com/orgads2026-boop/amazon/refs/heads/main/amazon.png","fqdn":"raw.githubusercontent.com","domain":"raw.githubusercontent.com","tld":"githubusercontent.com"},"ip":{"addr":"185.199.108.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.offerredeemer.com/","date":"2026-04-10T21:31:11.853Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Fri, 06 Feb 2026 21:41:53 GMT","end":"Thu, 07 May 2026 21:41:52 GMT"},"fingerprint":{"sha1":"A2:51:20:89:CB:5A:58:66:4F:F9:80:3A:0E:A3:6B:2B:13:44:D8:F9","sha256":"02:BD:D4:4D:11:37:CE:23:17:D9:AA:CC:D3:6F:75:3C:AA:1F:BE:C7:EE:91:CC:5F:AE:51:D8:1E:8F:F7:DC:A7"}}},"request":{"raw":"GET /orgads2026-boop/amazon/refs/heads/main/amazon.png HTTP/1.1\r\nHost: raw.githubusercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.offerredeemer.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=300\r\ncontent-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox\r\ncontent-type: image/png\r\netag: W/\"f7a474f0c8445aefea637ac34d66c5d1ed136b750e1f130ab1c8f11a21c9c88c\"\r\nstrict-transport-security: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-frame-options: deny\r\nx-xss-protection: 1; mode=block\r\nx-github-request-id: BB2E:20FEB7:2C4D13:31018C:69D96C1F\r\naccept-ranges: bytes\r\ndate: Fri, 10 Apr 2026 21:31:12 GMT\r\nvia: 1.1 varnish\r\nx-served-by: cache-hel1410025-HEL\r\nx-cache: MISS\r\nx-cache-hits: 0\r\nx-timer: S1775856672.942705,VS0,VE133\r\nvary: Authorization,Accept-Encoding\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-fastly-request-id: 3906b292e55565eca2a857548670ececf3894efd\r\nexpires: Fri, 10 Apr 2026 21:36:12 GMT\r\nsource-age: 0\r\ncontent-length: 56997\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"GitHub Pages","description":"GitHub Pages is a static site hosting service.","website":"https://pages.github.com/","common_platform_enumeration":"","icon":"GitHub.svg","categories":["PaaS"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"Fastly","description":"Fastly is a cloud computing services provider. Fastly's cloud platform provides a content delivery network, Internet security services, load balancing, and video \u0026 streaming services.","website":"https://www.fastly.com","common_platform_enumeration":"","icon":"Fastly.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":56997,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2364x1330, components 3","md5":"d4ce37b72049d358182354ca896da37d","sha1":"991c344d5a233618685a32c1f07fe0b4d18c3d13","sha256":"c16e62e32e38d0631d5f83cde6628a587af9508edebaaffe823f91eb7c1612e7","sha512":"6c32a745c5f34ef67dbd8f648c2f18bf13d611a617b7bc0b24d8d1551a2c8661c5c99bec0314fade830d0bba1b66c8ee9c819b50eb93af204da266d59dd144d7","ssdeep":"768:fxQ1eWOFDNW/WcK7KOTKsjbtNOMsqbfTcz056VaydHemn3DhA+HW:6OxkK7nVtNOrqrHW+mnTh7W","tlshash":"c043e04fbeaf48b7cb2bb9f00854183dad444dc2ccaa022627d3df3436310e6b698518","first_seen":"2026-04-10T21:31:48.171654Z","last_seen":"2026-04-11T02:13:34.982613Z","times_seen":3,"resource_available":false,"data":null}},"time_used":334,"timings":{"blocked":70,"dns":14,"connect":26,"send":0,"wait":160,"receive":30,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.offerredeemer.com/favicon.ico","fqdn":"www.offerredeemer.com","domain":"offerredeemer.com","tld":"com"},"ip":{"addr":"64.29.17.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://www.offerredeemer.com/","date":"2026-04-10T21:31:11.965Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.offerredeemer.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 07 Feb 2026 22:07:23 GMT","end":"Fri, 08 May 2026 22:07:22 GMT"},"fingerprint":{"sha1":"F5:91:A2:02:55:5F:8E:38:97:B3:D9:69:0E:B0:45:DF:81:E0:3B:17","sha256":"2F:3A:1A:19:59:FD:FF:EC:80:75:39:19:F3:B6:99:01:D1:D7:98:04:2C:B2:05:1B:82:E6:40:A1:2A:40:00:11"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.offerredeemer.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.offerredeemer.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: text/plain; charset=utf-8\r\ndate: Fri, 10 Apr 2026 21:31:12 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-error: NOT_FOUND\r\nx-vercel-id: arn1::s8rn4-1775856671969-fbae7fdef69a\r\ncontent-length: 79\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text","md5":"3f072116b021a0d85f21ed29c16a691e","sha1":"9eb73c0d0ec43d1cb7bfd90c3849de8efbc2e254","sha256":"64612341ce763f2a6a61494aab89380604c40732ee3423fe505dc60a91a950bb","sha512":"ec13b5f4fc8680161777eec01f556118aee8e2e3df88388c474353373eccdc7a046cf05944c8b0a390fc6277ce7a38439754d98f5a42cfb6791e706888a1f892","ssdeep":"","tlshash":"13a0122e06c02c4e338005011142123c04000227a9d1d600a08c2500605418d93d0281","first_seen":"2026-04-10T21:31:48.173374Z","last_seen":"2026-04-10T21:31:48.173374Z","times_seen":1,"resource_available":false,"data":null}},"time_used":166,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":166,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}