{"report_id":"e1b8f4c5-f291-4b76-8602-287a0654b0f9","version":6,"status":"done","tags":[],"date":"2026-03-03T13:07:31Z","url":{"schema":"http","addr":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com/indx?outtt/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4","fqdn":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com","domain":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com","tld":"s3.eu-west-1.amazonaws.com"},"ip":{"addr":"3.5.71.127","port":0,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"final":{"url":{"schema":"http","addr":"mergen.my/redirect/offer/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4","fqdn":"mergen.my","domain":"mergen.my","tld":"my"},"title":"mergen.my/redirect/offer/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4","dom":{"size":52,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with no line terminators","md5":"48d6f24ca1dfb70a06f492c049802ad3","sha1":"4bf39cf040f134e5ecd816ed22d42a6c4b69a630","sha256":"1e5bbaadc2534df889c336b1c7dc8151bd57d8ed25494b77ff3142bd876fba79","sha512":"a24c226b5dd31804d6672c8ba3d1670ee5c73820c19efa520d6a54e49f7ca39656bd777dbb26dcc66ca7ed81dcf16a4869d10345d6c0f4aa8e255633e87fbb71","ssdeep":"","tlshash":"e89002faf45500055c253d860ed122815814466421055b801985b46885056258806184","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com/indx?outtt/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4","fqdn":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com","domain":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com","tld":"s3.eu-west-1.amazonaws.com"},"ip":{"addr":"3.5.71.127","port":0,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-07T13:07:31Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":2,"urlquery":0,"analyzer":0}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-03T13:07:10Z","timestamp":1772543230,"ip_dst":{"addr":"Client IP","port":40840,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"172.190.15.238","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"severity":"high","alert":"ET POLICY Self Signed SSL Certificate (SomeOrganizationalUnit)","source":"{\"timestamp\":\"2026-03-03T13:07:10.315961+0000\",\"flow_id\":570886465666204,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.190.15.238\",\"src_port\":443,\"dest_ip\":\"172.18.0.31\",\"dest_port\":40840,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2013659,\"rev\":6,\"signature\":\"ET POLICY Self Signed SSL Certificate (SomeOrganizationalUnit)\",\"category\":\"Potential Corporate Privacy Violation\",\"severity\":1,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2011_09_15\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"SSL_Malicious_Cert\"],\"updated_at\":[\"2022_03_23\"]}},\"tls\":{\"subject\":\"C=--, ST=SomeState, L=SomeCity, O=SomeOrganization, OU=SomeOrganizationalUnit, CN=azr-02.internal.cloudapp.net, Email=root@azr-02.internal.cloudapp.net\",\"issuerdn\":\"C=--, ST=SomeState, L=SomeCity, O=SomeOrganization, OU=SomeOrganizationalUnit, CN=azr-02.internal.cloudapp.net, Email=root@azr-02.internal.cloudapp.net\",\"serial\":\"14:78\",\"fingerprint\":\"7e:46:8a:00:65:a9:45:79:e0:9c:94:fd:45:b6:6a:0f:df:24:16:82\",\"sni\":\"mergen.my\",\"version\":\"TLS 1.2\",\"notbefore\":\"2023-06-21T23:48:59\",\"notafter\":\"2024-06-20T23:48:59\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"303951d4c50efb2e991652225a6f02b1\",\"string\":\"771,49199,65281-11\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":8,\"pkts_toclient\":5,\"bytes_toserver\":1332,\"bytes_toclient\":1915,\"start\":\"2026-03-03T13:07:10.015516+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-03-03T13:07:10Z","timestamp":1772543230,"ip_dst":{"addr":"Client IP","port":40850,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"172.190.15.238","port":443,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"severity":"high","alert":"ET POLICY Self Signed SSL Certificate (SomeOrganizationalUnit)","source":"{\"timestamp\":\"2026-03-03T13:07:10.511851+0000\",\"flow_id\":2150390753551559,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.190.15.238\",\"src_port\":443,\"dest_ip\":\"172.18.0.31\",\"dest_port\":40850,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2013659,\"rev\":6,\"signature\":\"ET POLICY Self Signed SSL Certificate (SomeOrganizationalUnit)\",\"category\":\"Potential Corporate Privacy Violation\",\"severity\":1,\"metadata\":{\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2011_09_15\"],\"deployment\":[\"Perimeter\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"SSL_Malicious_Cert\"],\"updated_at\":[\"2022_03_23\"]}},\"tls\":{\"subject\":\"C=--, ST=SomeState, L=SomeCity, O=SomeOrganization, OU=SomeOrganizationalUnit, CN=azr-02.internal.cloudapp.net, Email=root@azr-02.internal.cloudapp.net\",\"issuerdn\":\"C=--, ST=SomeState, L=SomeCity, O=SomeOrganization, OU=SomeOrganizationalUnit, CN=azr-02.internal.cloudapp.net, Email=root@azr-02.internal.cloudapp.net\",\"serial\":\"14:78\",\"fingerprint\":\"7e:46:8a:00:65:a9:45:79:e0:9c:94:fd:45:b6:6a:0f:df:24:16:82\",\"sni\":\"mergen.my\",\"version\":\"TLS 1.2\",\"notbefore\":\"2023-06-21T23:48:59\",\"notafter\":\"2024-06-20T23:48:59\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"303951d4c50efb2e991652225a6f02b1\",\"string\":\"771,49199,65281-11\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":8,\"pkts_toclient\":5,\"bytes_toserver\":1210,\"bytes_toclient\":1915,\"start\":\"2026-03-03T13:07:10.222407+0000\"}}"}],"analyzer":null,"urlquery":null},"summary":[{"fqdn":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com","ip":{"addr":"3.5.75.57","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2005-08-18","domain_rank":0,"first_seen":"2026-03-03T13:07:31.915045Z","last_seen":"2026-03-03T13:07:31.915045Z","alert_count":0,"request_count":1,"received_data":708,"sent_data":589,"comment":"","tags":null,"fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"mergen.my","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":3,"received_data":551,"sent_data":1449,"comment":"","tags":null,"fingerprints":[{"name":"CentOS","description":"CentOS is a Linux distribution that provides a free, community-supported computing platform functionally compatible with its upstream source, Red Hat Enterprise Linux (RHEL).","website":"https://centos.org","common_platform_enumeration":"cpe:2.3:o:centos:centos:*:*:*:*:*:*:*:*","icon":"CentOS.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.6","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP:5.4.16","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"OpenSSL:1.0.2k","description":"OpenSSL is a software library for applications that secure communications over computer networks against eavesdropping or need to identify the party at the other end.","website":"https://openssl.org","common_platform_enumeration":"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*","icon":"OpenSSL.png","categories":["Web server extensions"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com/indx?outtt/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4","fqdn":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com","domain":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com","tld":"s3.eu-west-1.amazonaws.com"},"ip":{"addr":"3.5.75.57","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"9890eba10e751327e32e520c37a3ec9c","sha1":"63d18699b61ee3c465fe47923de5168bd1923ddf","sha256":"c5fe7dfd05b4dd31c7b018c7e6ab83385f61ace7ba4bd92ab18fc9906e54dcbd","sha512":"689e578986697f31db5b0796e3fbc3526916e7a5016bf6b12d2f7012566bc4f4c4ca417b069ddb97a87b30f8cfa30fde29c9ca8f32f2544df7c43f0bc3c908a9","ssdeep":"","tlshash":"16d02bf00942049eb2c12e16e4cf3181ece3467c494cd201e41d984069b0f3f62bfb4c","size":268,"data":"","first_seen":"2026-03-03T13:07:35.553564Z","last_seen":"2026-03-03T13:07:35.553564Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"mergen.my/redirect/offer/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4","fqdn":"mergen.my","domain":"mergen.my","tld":"my"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-03T13:07:09.975Z","timestamp":0,"http_version":"","security_state":"broken","security_info":null,"request":{"raw":"GET /redirect/offer/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4 HTTP/1.1\r\nHost: mergen.my\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-16T21:13:21.954299Z","times_seen":13835446,"resource_available":true,"data":null}},"time_used":247,"timings":{"blocked":247,"dns":0,"connect":94,"send":0,"wait":0,"receive":0,"ssl":106},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"mergen.my/redirect/offer/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4","fqdn":"mergen.my","domain":"mergen.my","tld":"my"},"ip":{"addr":"172.190.15.238","port":80,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-03T13:07:10.430Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /redirect/offer/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4 HTTP/1.1\r\nHost: mergen.my\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 03 Mar 2026 13:07:10 GMT\r\nServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16\r\nX-Powered-By: PHP/5.4.16\r\nContent-Length: 16\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CentOS","description":"CentOS is a Linux distribution that provides a free, community-supported computing platform functionally compatible with its upstream source, Red Hat Enterprise Linux (RHEL).","website":"https://centos.org","common_platform_enumeration":"cpe:2.3:o:centos:centos:*:*:*:*:*:*:*:*","icon":"CentOS.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.6","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP:5.4.16","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"OpenSSL:1.0.2k","description":"OpenSSL is a software library for applications that secure communications over computer networks against eavesdropping or need to identify the party at the other end.","website":"https://openssl.org","common_platform_enumeration":"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*","icon":"OpenSSL.png","categories":["Web server extensions"]}],"data":{"size":16,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text","md5":"166a7b80754c8366542bee2c726fe65c","sha1":"61c691eb13542edd19afaee1e334f0dd6ec45913","sha256":"228174636a097b52604728f5adfebb2f0584cf07d4990a73a13b3140c0809a81","sha512":"b0ff9ccf51af3a963aa5c249bbba9c6658ed98619ed0653e5c312ee13b74c69695198d16edee5e476c1572d1a4226007a3de15883082d772bcadc6154ee896d4","ssdeep":"","tlshash":"be600003fc00300000330c030f30303030000000330c03c00c03f00c0300000000c003","first_seen":"2025-10-13T05:43:41.892538Z","last_seen":"2026-03-05T05:53:44.90172Z","times_seen":14,"resource_available":true,"data":null}},"time_used":295,"timings":{"blocked":94,"dns":1,"connect":94,"send":0,"wait":106,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"mergen.my/favicon.ico","fqdn":"mergen.my","domain":"mergen.my","tld":"my"},"ip":{"addr":"172.190.15.238","port":80,"asn":8075,"as":"MICROSOFT-CORP-MSN-AS-BLOCK","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://mergen.my/redirect/offer/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4","date":"2026-03-03T13:07:10.729Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: mergen.my\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://mergen.my/redirect/offer/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 03 Mar 2026 13:07:10 GMT\r\nServer: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16\r\nX-Powered-By: PHP/5.4.16\r\nContent-Length: 16\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"CentOS","description":"CentOS is a Linux distribution that provides a free, community-supported computing platform functionally compatible with its upstream source, Red Hat Enterprise Linux (RHEL).","website":"https://centos.org","common_platform_enumeration":"cpe:2.3:o:centos:centos:*:*:*:*:*:*:*:*","icon":"CentOS.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.6","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP:5.4.16","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"OpenSSL:1.0.2k","description":"OpenSSL is a software library for applications that secure communications over computer networks against eavesdropping or need to identify the party at the other end.","website":"https://openssl.org","common_platform_enumeration":"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*","icon":"OpenSSL.png","categories":["Web server extensions"]}],"data":{"size":16,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"ASCII text","md5":"166a7b80754c8366542bee2c726fe65c","sha1":"61c691eb13542edd19afaee1e334f0dd6ec45913","sha256":"228174636a097b52604728f5adfebb2f0584cf07d4990a73a13b3140c0809a81","sha512":"b0ff9ccf51af3a963aa5c249bbba9c6658ed98619ed0653e5c312ee13b74c69695198d16edee5e476c1572d1a4226007a3de15883082d772bcadc6154ee896d4","ssdeep":"","tlshash":"be600003fc00300000330c030f30303030000000330c03c00c03f00c0300000000c003","first_seen":"2025-10-13T05:43:41.892538Z","last_seen":"2026-03-05T05:53:44.90172Z","times_seen":14,"resource_available":true,"data":null}},"time_used":107,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":107,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com/indx?outtt/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4","fqdn":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com","domain":"amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com","tld":"s3.eu-west-1.amazonaws.com"},"ip":{"addr":"3.5.75.57","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-03T13:07:09.545Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.s3-eu-west-1.amazonaws.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Fri, 05 Sep 2025 00:00:00 GMT","end":"Fri, 07 Aug 2026 23:59:59 GMT"},"fingerprint":{"sha1":"12:6F:C1:FB:1F:1E:AD:F5:AB:FC:A0:9C:B4:0E:C6:91:D9:B2:CD:D4","sha256":"E5:79:9A:D8:27:48:04:B2:15:F7:4D:13:7B:45:41:A1:87:CC:8A:D4:88:D0:BB:3C:CE:18:FA:64:4C:6C:57:E2"}}},"request":{"raw":"GET /indx?outtt/002kl/219/adh9j/30vf/41/77/?qs=ea0eff4cbc3613fcbee4f4bcb9ac77e4 HTTP/1.1\r\nHost: amzn-jeefry-buckets.s3.eu-west-1.amazonaws.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nx-amz-id-2: Pcc6i0wyPlsDGBSvbA0lD7EZGl3FHn9dh1AJhFgRF0g9CYLNqHNKiP4e75/Lbs+SI8WX9E1YBSTuRnqJMCRK1Q6ZjtNJKIJE\r\nx-amz-request-id: 9DEGXH9GGWXW2THY\r\nDate: Tue, 03 Mar 2026 13:07:10 GMT\r\nLast-Modified: Mon, 02 Mar 2026 21:27:58 GMT\r\nETag: \"33042ddb9d22e444e54ae0a97e316472\"\r\nx-amz-server-side-encryption: AES256\r\nAccept-Ranges: bytes\r\nContent-Type: text/html\r\nContent-Length: 294\r\nServer: AmazonS3\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":294,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"33042ddb9d22e444e54ae0a97e316472","sha1":"2cb0f76ec961d46c111d2faa1860f73bd160c526","sha256":"0774cbc2776c12c22d5927ed82d28cbec64c6246d27c13fdaeb6fa7418146dbe","sha512":"901e9908343a5ae8faa1ede6dc9147898d408aec878d93a771f0894eeda53f53edc038a0b5bbf6f351acff81db404772ca6e92dffbe75bfa46f6400a36f169f0","ssdeep":"","tlshash":"72e07dd00c46445962c12a11d4cf3144a4e3417c8648c101f01c9b413770bbda6bab4c","first_seen":"2026-03-03T13:07:35.548416Z","last_seen":"2026-03-03T13:07:35.548416Z","times_seen":1,"resource_available":true,"data":null}},"time_used":352,"timings":{"blocked":148,"dns":9,"connect":35,"send":0,"wait":56,"receive":0,"ssl":101},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}