| trx-core.cc/img/logo.png | 188.114.96.1 | 200 OK | 33 kB |
IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 732 x 122, 8-bit/color RGBA, non-interlaced Hash7476087b9221ebd3234eb31579ca3b4b 984577df4d090c1b2a758446f019be38be88dd40 79488b90fea3a726a31b726b12662cd9f15da8acbeee67dcf9d8d8feaee755d2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/logo.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 33067
last-modified: Mon, 01 Apr 2024 04:25:56 GMT
etag: "660a3754-812b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4FYR9CHNqV6Q5sANlV3CX90hNJcaB%2FTf8UXeZsVU%2FikHEw1NvD5h7cjZBB9RjJhzmiZxzX%2BM7w7mYoAAD1sKP6sFQ21w96S1%2BJZ4UaDK8jRDgJX1%2FHiJdbQ422AVXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477bede956a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/img/telegram.png | 188.114.96.1 | 200 OK | 5.3 kB |
URL GET HTTP/3trx-core.cc/img/telegram.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hash2b94366d838f46bf638591efaa9e1f31 8f647ef8a6fcdf6d0314d50bded9dd16188199bb a6b617c9706f9147804812e06783c83c8dde1a4718f92e6477935502f14d9aa9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/telegram.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 5267
last-modified: Sat, 30 Mar 2024 16:40:51 GMT
etag: "66084093-1493"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kqQMYMRRQD6sg1noLdRYaOPeLYrYTwGmgqnhTnQ07Eunc0Ww3mK0Zkrc6tgHhbdhr2iyrkGk9Yh2Thqd%2B9CGSiCgceq2SS4SYYcTBzukrx56efluUGqFoz4iwmXM4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477bedea56a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/img/mini-tron.png | 188.114.96.1 | 200 OK | 51 kB |
URL GET HTTP/3trx-core.cc/img/mini-tron.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 700 x 700, 8-bit/color RGBA, non-interlaced Hashca19490efa3decaf8825b39a49341e3f b8265cbb4505f835aafcd2b7dd32d0bb0f8e7310 b3485f6e21f21f5a877a9010b710e3eef97c1cc0f7045c12e380baae0a6d7f32
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/mini-tron.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 51418
last-modified: Sat, 30 Mar 2024 16:40:48 GMT
etag: "66084090-c8da"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iS4PSu%2BBPlYfs0QqjKtxa2DPzWtGvyyNYZtJyIF%2FKWphFbSXTRrG8AepGZhm%2BbWAxnYfX%2BXWo1j2WedeyheGKBCbBRgi6YnCg59hqve7d%2F6wPwSIWFyVWypmkRDH5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477bedec56a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/img/t1.png | 188.114.96.1 | 200 OK | 81 kB |
IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 550 x 613, 8-bit/color RGBA, non-interlaced Hash97fdad24341b2d83283ec55e403f0017 c870c9c9652f7c75799653959dcad4667b3735f8 03fbd0ddfe11275ca3b7c40e38e6b8c45ade82a014bdda0f15986f99bc3cfdb1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/t1.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 80650
last-modified: Sat, 30 Mar 2024 16:40:50 GMT
etag: "66084092-13b0a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0Lgaz6F2L0UPYk7iszMqJV%2Bm6f0sA0EdVSoMgV911MxlqAqdjOZYaThWik8q9CLFV0r%2BWtKK1rDlvd2cmImQv8F3l2VZOOJUdA1szSc%2BHWfhcgMsQa%2FCcLrsg1ANng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477beded56a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/img/t2.png | 188.114.96.1 | 200 OK | 60 kB |
IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 550 x 613, 8-bit/color RGBA, non-interlaced Hash68dec6438a3e82a4b0da1929ba555bea 8877eeed843f79864fecb877c2613c6c730a169b feeb944c85f81f791b93ef7f917ed3ae70678ffccb3aa4193fe0ff5293c2b1ee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/t2.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 59724
last-modified: Sat, 30 Mar 2024 16:40:50 GMT
etag: "66084092-e94c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CjPMlgBkzAXRNMuWdiekCC8MQxlLsf1t%2F1YPnSwpMWdTOicrMx1FLW%2F%2Fs44fue40%2BLRioWprvJzgl7ZvqeFSgv93hYDjKIK%2BmzJo6HxKBNmkquhf6sIRp4WVIt7aVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477bedee56a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/img/t3.png | 188.114.96.1 | 200 OK | 50 kB |
IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 550 x 613, 8-bit/color RGBA, non-interlaced Hashf0d8664718f3728be9bf4d5fa20e5eae 2486e07e1071dbdd7c93fb14f1ba46395de0bff8 2eae041ce03c869cb2329d1c589a2796c5d80405e6f7733c3bd31737f7dbb65c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/t3.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 50148
last-modified: Sat, 30 Mar 2024 16:40:50 GMT
etag: "66084092-c3e4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ktLTbEZEskYlc3hahI6iMXtn%2BPuxmu37QmYRfh52JGBMYWtIDMtqx54oSZT0dIZsDG0x%2BgfyGNrUQpmUy%2BmxjSS1ylP0xz8QgsrwdIbCkMq7VHgc8KVEn21cfT6Mig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477bfdf056a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/img/t4.png | 188.114.96.1 | 200 OK | 63 kB |
IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 550 x 613, 8-bit/color RGBA, non-interlaced Hash6caff113404df42ba2508ffdb11c2430 a27ea23bf63858f1109851ba5f9b61622e7a3c27 1a49e381c3b106bd61f2e46bb1ef21e107764649e53087700d4967ebbea77b7e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/t4.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 63001
last-modified: Sat, 30 Mar 2024 16:40:50 GMT
etag: "66084092-f619"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VpIhQxUg0D2P5hEWExPepfCVOL72OOC4U79MM1Zs362jrXtuC0lOFAczxi47jrvJdQV%2FQRHCk0B%2FNBP839Xv5tY3tJ%2B1dScQObk3Lp0wvcQvWTlz%2FE8C1OTZIDTbAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477bfdf256a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/img/blue-tron.png | 188.114.96.1 | 200 OK | 44 kB |
URL GET HTTP/3trx-core.cc/img/blue-tron.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 700 x 700, 8-bit/color RGBA, non-interlaced Hash48a3939056c7b57bf347319d415e5cb0 04a4f338565080a1d96e3eb0b08b63e665008984 fe9299f5d79f77d76840ba5f3335a2a2081e63e954ead5e3cdeaef49d99857d1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/blue-tron.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 44369
last-modified: Sat, 30 Mar 2024 16:40:48 GMT
etag: "66084090-ad51"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qt6%2F6EFZEoemATTEM89W0ifU2ZMXPH63u4PEog6hjoT4HiEuBFFHeeX7eUhJQUBJ1RCuxoIR1ul61GBenDJSZ%2FtMY2AHc06d8ymXyiseQ5FMjZqYiQsmXD4kPNwDAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477bfdf356a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/img/website.png | 188.114.96.1 | 200 OK | 4.7 kB |
URL GET HTTP/3trx-core.cc/img/website.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hashd0798572759e84e513598d29525ed4c5 c721589d63ce108e2ae90a6b74a6df37b8707bfe 145d98584a7d79a2b4cf30454304d4798a0964ab61fb5b3437315b518ddf7902
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/website.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 4749
last-modified: Sat, 30 Mar 2024 16:40:45 GMT
etag: "6608408d-128d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uSISl7OAgUgRkbnHNf2LQGrunQ%2F4IcJ2h%2BXvd%2BTxlbPQ0GqdCWTv6ctUYrpNXvMg4ECGGSnyYWJ9ZEVVEY1sYAnw3%2BEB2rN3gT%2FijzRmUY9sGvwVjoDjwJRDqM%2FzNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477bfdf456a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/img/passive.png | 188.114.96.1 | 200 OK | 8.6 kB |
URL GET HTTP/3trx-core.cc/img/passive.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hash102c187c5b294c0c31f0703a4e4537d4 c43c5528becec36581551c2c11f61370eb61c80f e1625266e68117817a1aa79a2bbd0b2b4c9af6904771b32bfe8c10653ef9caaf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/passive.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 8577
last-modified: Sat, 30 Mar 2024 16:40:49 GMT
etag: "66084091-2181"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o7%2FHz6Ycbi9tLsyzwmvceOYMVTVpF1RNq2xMAuZAGHnNK7gUydLj3Ha%2F3xdeIcw39Uatkk97q8CNBqSkR02aDcRRkwJFMJgiFjU3gL%2FH%2BnBqDsurjv0yaP06N1L7zQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477bfdf956a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/img/24.png | 188.114.96.1 | 200 OK | 5.9 kB |
IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hasheb7abde22334317ddb7d6abe8c0ae99d b9302237de4de3c8443a967a22c1b661f27d53c4 4c228aeefe31340f3fdf6fb7f513ddcc9f0c5a84cddf665090b65fb9d9699602
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/24.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 5905
last-modified: Sat, 30 Mar 2024 16:40:46 GMT
etag: "6608408e-1711"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eiGxYnNuzWtvvRS9VDdH4w9MhV6yjcGCR8JN%2Ba%2BP6PioE43J%2BvxBalnuafq058t%2FKaWPMzSAMLaDFxhXXDuGyzwm0QBGSlUv7lmJk0nsZPx2v04a0FiuGg1vn%2BnK9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477bfdfa56a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/img/money.png | 188.114.96.1 | 200 OK | 4.2 kB |
URL GET HTTP/3trx-core.cc/img/money.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hash06c20b9d40e196b0e7c645eedab0772a 684f9887682fff03212fa12e0da6635f4043827f 571a5a472e258c80352e85dc86681093ec9a754434b9cbe3e2c53db73b13f435
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/money.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 4159
last-modified: Sat, 30 Mar 2024 16:40:48 GMT
etag: "66084090-103f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 145817
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=810hwtcrr4%2FNmfciq5VifeQ35gAJ466O4THud0kxu%2FFoJmpH2nVz1Sp2X2UdXZkOSwT5jvk5DI0fAub%2Fck%2B%2BR0cdYlCPDuyPnjajr9oqoGMVd6%2B3%2BbrRxQjw6tq2%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c0e0556a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/flag/gb.png | 188.114.96.1 | 200 OK | 3.7 kB |
IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hash6bf3cf5d375d7561cb3b9bf74212ed45 06eeb80d2de8c99b16fe42c7ec9c328340aae2f1 f2fb1ca1804390a6b6f41a676aeb89c1da568a5474f777122bb866012173bfc4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flag/gb.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 3653
last-modified: Sat, 11 Aug 2018 21:00:00 GMT
etag: "5b6f4e50-e45"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cWJEJl2i3rVl4EKcDMESbb%2FmfRzQCb%2FiGfZxOBiQsqwxQha44%2BvKwNCAZaC6plhwhfl%2F6KIskxI343g0ZappdTSfQQnquLW96C0LL2SqmXwqbS5qrh1vKfM5be%2BiyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c0e0656a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/flag/India.png | 188.114.96.1 | 200 OK | 1.6 kB |
URL GET HTTP/3trx-core.cc/flag/India.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hash78cbfbf0381b8c7f5a192c4a46bd0b0e 6a3d62217fa0137a424982f24d27504e468f2736 0caf995e35fc763e0276d74310a6d897cf42e4e0de3b4d00ba8505550383a276
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flag/India.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 1550
last-modified: Sat, 11 Aug 2018 21:00:00 GMT
etag: "5b6f4e50-60e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 880094
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JJa69O42G5XCv2CWJgR9eVOP%2BrbzSb5lpBMkFS32jLZ3tmbMZHy9DZzQ%2BPfj24QzkEOT2lZbquUSaQtnlYC2yFCMgWtpgVYLOcZAmUU3Uenly3P3tob5nMgfEvSVXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c0e0756a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/flag/Pakistan.png | 188.114.96.1 | 200 OK | 2.1 kB |
URL GET HTTP/3trx-core.cc/flag/Pakistan.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hash245ea96c0add66d202f7ddf47bfaaf19 24231790fecddb0d7108b9cd71645d6c098b8e79 b67857b45de8b46e8fe6423ec3b2f2fb6111741d7d13f69485e705e8ade1e23c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flag/Pakistan.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 2118
last-modified: Sat, 11 Aug 2018 21:00:00 GMT
etag: "5b6f4e50-846"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 880901
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mmcZQDe21RSGb5aquRlfCapULAGhVGbsRnwZZJuODrQhhvUWn8VkjMLIcUisy4qUQViW1fQSAnuwSv8BEAoxFMtEVMkwQiBhNLkXrlmh1%2FHo%2B%2BMBEvTIFpAfBdiYaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c0e0b56a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/flag/Brazil.png | 188.114.96.1 | 200 OK | 3.0 kB |
URL GET HTTP/3trx-core.cc/flag/Brazil.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hash6d08e0dcdad5dad61bfe91e9fd10ec43 70a64b36bd71808e2bcb9a1e9b2fae4037f98185 9d7377e3b13cad3f234d2b82c45c9cc1f0bd91daf3ed419b5c2900d4fceebf96
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flag/Brazil.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 2994
last-modified: Sat, 11 Aug 2018 21:00:00 GMT
etag: "5b6f4e50-bb2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 879519
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OvWTfIg78lkfCtB55CstMv4K2%2FqSghVxbtt3p2WHblSPqY9biWQzuRpTYZHRSmM7%2BBWOkmkn3nQdaLi%2FL0u58KlHHfUEi%2FH9UE3o1v%2FnaQtfkQU7m7DBwLkGeMoN0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c0e0c56a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/flag/Indonesia.png | 188.114.96.1 | 200 OK | 1.2 kB |
URL GET HTTP/3trx-core.cc/flag/Indonesia.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hashc1bd29515ef87d52d8cedc77783563e2 afe216e4eea16e660127ed4ada74f1237b2b0a54 47d80373c50c7ebb8f938597b0e6a69dde14575270bf3667d5681a11fdea75f0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flag/Indonesia.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 1181
last-modified: Sat, 11 Aug 2018 21:00:00 GMT
etag: "5b6f4e50-49d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 879519
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5dUneN5xsJaVynk6M83UoZiE1FRP19o0vz6MYthJSpJkgCRajC9D8bP5XhEHRje45Z74cXpk%2B%2ByNwtp7fdsy1AY%2B%2FfjPK1mT1SS%2BysnljT3EhFYhmxeyLQgXPfAHqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c0e0d56a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/flag/Romania.png | 188.114.96.1 | 200 OK | 1.2 kB |
URL GET HTTP/3trx-core.cc/flag/Romania.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hashd5073ab2ca9ee7c06c3f4d761968ac44 ce4168ea3e5053380d797914f32d7984ecc45ca4 7df8d7bf9dc874324b2ec01275f82e39dab4f5cfc1957954bbba06d849aebee4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flag/Romania.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 1195
last-modified: Sat, 11 Aug 2018 21:00:00 GMT
etag: "5b6f4e50-4ab"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 880335
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f%2FS%2FQECCyqjSmkBLyyFb0%2FjZo42CGpl9GGyfQwEuYiPa9cL1tcporBF6%2F9WJv2B3sFZOqPEU%2FOnEFyUgy4x570BG7zh1OPOdCaB8AaxEuW%2FV%2FnN%2FE%2FmGmbFG5sAGKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c0e0f56a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/flag/es.png | 188.114.96.1 | 200 OK | 1.4 kB |
IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hash1b4684a24835b94ae1550ab478916e78 c84b6e0ce342ecdd2f789b4f092e2139e859091b 536e878615b908a0a15838096aaaffdadf7c079c73cdee4457bc964001b12428
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flag/es.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 1413
last-modified: Sat, 11 Aug 2018 21:00:00 GMT
etag: "5b6f4e50-585"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 1460
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uAmdUG6LYJOB9IWoKpc1vZkjkgMD82uKS2%2Fahrd%2B8Fgijv4ylRwNrlBcipyXCzOACarJssbLeUbF%2BOM2cUdobQhfOqoIUBKu4%2BdA7cEUxcOH7%2FS3fIwLrlJy35hqEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c0e1056a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/flag/ru.png | 188.114.96.1 | 200 OK | 1.2 kB |
IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hash24ae8eed8d133412572419a82b51e430 9cb14c72abda53ca76d9ab8bb4f7c1e1e099deb6 51b9ef4b3e4da6c652d3badc2999add78b800cf113e36baf240143fd8dfb38e7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flag/ru.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 1181
last-modified: Sat, 11 Aug 2018 21:00:00 GMT
etag: "5b6f4e50-49d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 880979
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cpy8XGK%2F%2B%2B6vFogDjwVOVybjj%2FwptKyEDD1OGMAR8XRFpP4VFBie7FXWOa7sMf9sGEcbjXIG78tH5jyG5AeqLBVAcOH%2FgJZddrQGzazY%2F%2Fe%2BmNZJ19RCp4ew%2BEQM8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c0e1156a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/flag/Italy.png | 188.114.96.1 | 200 OK | 1.2 kB |
URL GET HTTP/3trx-core.cc/flag/Italy.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hashdf891e228f93d4bf850386971dbe38f8 ca7a98f4f88db0871cdfc6f7311137e71491479a 6dfa36808c40ce49318230061806936c68a7626797102bbfd182d024d2b26c3a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flag/Italy.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 1189
last-modified: Sat, 11 Aug 2018 21:00:00 GMT
etag: "5b6f4e50-4a5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 880708
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fQP1S96fRK7a72IbEfTzy1pkLxT6s3rqkZ0rHnL0mP6kXif9NkK4EjcMDmgyuZOG1y1JF9e%2BPslQY%2B1wVBHlZs6jQ%2BQKg7AJ365LZumJyDzeftU096aIESOB%2F7e07w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c0e1256a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/flag/Malaysia.png | 188.114.96.1 | 200 OK | 1.8 kB |
URL GET HTTP/3trx-core.cc/flag/Malaysia.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hash7ea8f54462a013b89c865d53ef148675 c432e1f0958726b6a46c08a6b30eda390a4e7bf7 76245fc94be8164b023243a06c7687d511441d1fdf406d8e4a317a77a26e29e7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flag/Malaysia.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 1828
last-modified: Sat, 11 Aug 2018 21:00:00 GMT
etag: "5b6f4e50-724"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 859650
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wAceXtc19vXV96222u9AXNMoiqbcl9wHzj8ZO3cZldKa9ZEg2yneBFgqg6f0QVvckJHwFtzHhp%2FBgqOY0Lg1hDtOorprHJWtkDfqug40c5gYW9LSf6y55sCJCu%2BOBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c1e1956a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/flag/Laos.png | 188.114.96.1 | 200 OK | 1.4 kB |
URL GET HTTP/3trx-core.cc/flag/Laos.png IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hashd2458eb51684133cb18636296eee8597 62530d742a528d1b79046805515899bba5209b37 55e2d64b8f562363fc9889f7d93e4c6e749fff719c25ecdf7fa7a87877ff76a2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /flag/Laos.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 1350
last-modified: Sat, 11 Aug 2018 21:00:00 GMT
etag: "5b6f4e50-546"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 2986
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zd4RJYD1Vb4XihvuKrVMNKkJa%2FUjoTSkeEKnsVn%2BhuM5IRguLAkpSBVj%2FJ5U4peN7T27zkGsuee8ObFaJiYwwsYK17X8fa0fzXKSNnupblWIVkRS5YaFRu%2FxYOks7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c1e1a56a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/img/next.png | 188.114.96.1 | 200 OK | 7.8 kB |
IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced Hash865975f73df4fa74611ecc29ffac809a 62089ea9200c231fadf7199ecf2efad2c45776a7 f97296c254570780b03981b7efe03aa61f6e4aa9919234af7d3167b1cd6c113c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/next.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: image/png
content-length: 7815
last-modified: Sat, 30 Mar 2024 16:40:48 GMT
etag: "66084090-1e87"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881814
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tZanYTfLoFrhhwmC2jbWWh4V2w9ngXKYnpRpiVCgpjn0VOiJSsoTPOoMMg1r2oC%2B0LS9JgQB2or1dNT9ACNm3cQY%2Fu8v9gpYGdsfqIffKxztbM%2FDKbtJd2p%2BjfDSlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477c1e1c56a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/css/all.min.css | 104.17.24.14 | 200 OK | 17 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/css/all.min.css IP104.17.24.14:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65317) Hash6386fb409d4a2abc96eee7be8f6d4cc4 09102cfc60efb430a25ee97cee9a6a35df6dfc59 0df5a33710e433de1f5415b1d47e4130ca7466aee5b81955f1045c4844bbb3ed
GET /ajax/libs/font-awesome/6.1.1/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: text/css; charset=utf-8
content-length: 17041
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "623a082a-4291"
last-modified: Tue, 22 Mar 2022 17:32:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 219823
expires: Wed, 09 Apr 2025 10:40:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9DpIHxpcS%2BOUcIXP1yXuUM8sSQ%2BhwNe%2F2j4sEpi%2BIPmcccrKAhHWx%2FVNdRf97B3kGQMRCH7WeOa0po8hlMa9OTi9kaUgXpBH7%2BYN3OPS3sHBNscSvIViXsEyjXFY4dKwo7kbci9Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876c477c7b8056ae-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js | 172.217.21.170 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js IP172.217.21.170:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hasha09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 11:06:16 GMT
expires: Fri, 18 Apr 2025 11:06:16 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 84879
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Raleway:ital,wght@0,100..900;1,100..900&display=swap | 142.250.74.170 | 200 OK | 480 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Raleway:ital,wght@0,100..900;1,100..900&display=swap IP142.250.74.170:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Size480 kB (480346 bytes) Hashcdd15f321a65624b959531cd71a6f648 bd6f2c436e46684368b4c485f5ebc02ef7d0ddf8 8466d3a98f62cc61ce65a6dfcbee46f69eceb27cb437e8694ae5cba5e16ccca9
GET /css2?family=Raleway:ital,wght@0,100..900;1,100..900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 10:40:56 GMT
date: Fri, 19 Apr 2024 10:40:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| trx-core.cc/img/road.png | 188.114.96.1 | 200 OK | 99 kB |
IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 716 x 848, 8-bit/color RGBA, non-interlaced Hash6d5200472b6072e59c7244ace0744a7a 27d2ea0e3be8658881fe4d81c774ead70b4f4c1a efaa2887f3e92b2041f760ced6b9dba2455d4552acd88a4ae98521830032b009
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/road.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/css/style.css?v=119
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:56 GMT
content-type: image/png
content-length: 99126
last-modified: Sat, 30 Mar 2024 16:40:49 GMT
etag: "66084091-18336"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881815
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7%2BqPG7Z1SRZSXy15DUQbcL4B6aZHX02Mwv6Eoq9CIBMpRK5v3SUKVsHNkAdUXhR2qISf6EJUXmE0umMeeK9EyZsps3aWvQ74%2FqwRbYR53Mugak1ScH7j6JXswa3%2F%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477ea83756a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/webfonts/fa-regular-400.woff2 | 104.17.24.14 | 200 OK | 24 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/webfonts/fa-regular-400.woff2 IP104.17.24.14:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23940, version 769.768 Hashe8a1ba418ee6d897d1339ef22e6d8e60 379ca48f70f3d4f79f8bf1079881c7c5af4f44a4 6a274e7629c0d71dcf8cab1e7733687ebfe32e2c53b4ca9fad050b4f1d5471f3
GET /ajax/libs/font-awesome/6.1.1/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://trx-core.cc
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:56 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 23940
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "623a082a-5d84"
last-modified: Tue, 22 Mar 2022 17:32:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 12795185
expires: Wed, 09 Apr 2025 10:40:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OcLVUjcSyjo9PwqZKygS8V9w%2FoUcp%2BPkIemopP3O3EisZuhmCr2fyHkiDOjq%2BZuoHMQhCWUWucUn1Shjo0Y6BRhJKdm%2BFHHFSKFBp7EAUTxMnsuCX7k2eqHGuCn0tzAeptvKt4%2Fq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876c477f99ac712d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 IP216.58.207.227:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48208, version 1.0 Hashc49b7c3643f781d71645c5a40a78b5bf e71138026b38afc443fb60da5ffc2244c4f5eb11 8cbc049ddbd7ca67068451ce754401833499959c4c6ed7b98f664d42e0597808
GET /s/raleway/v29/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://trx-core.cc
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 21:58:52 GMT
expires: Tue, 15 Apr 2025 21:58:52 GMT
cache-control: public, max-age=31536000
age: 304924
last-modified: Wed, 13 Sep 2023 23:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| trx-core.cc/img/favicon.ico?v=3 | 188.114.96.1 | 200 OK | 3.4 kB |
URL GET HTTP/3trx-core.cc/img/favicon.ico?v=3 IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typeMS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hashd697cf8bff9c4cf0b70e1a5f79c40984 ee66dfceceba9b8ebd275cb524812ffe1c07d6b6 f7f2db3be9afc2a76e8a9ab482e9c18f8e36e518faddc8c48ec19121e8eb9fd8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/favicon.ico?v=3 HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:56 GMT
content-type: image/x-icon
last-modified: Tue, 02 Apr 2024 04:02:49 GMT
etag: W/"660b8369-3c2e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 928032
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P%2Bzmw07LBHNf1aeteVuSuW4cAmnSqlK1Med7mZsoumXB1S8HabSzS9Qet1d5vMIMeuMH5ua5fe4mVUyxsCgI%2FfN9qzxgksjn1fAlwR7LoaWrweUh8PgOUIJYAI6Qog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c4780197556a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 188.114.96.1 | 200 OK | 4.5 kB |
URL User Request GET HTTP/2IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash94fae35e72cbd45fff519e45203e2c1c 94e356d42fb3d6ff55e8538179b10d6a5bb4e162 b43e4515ab1a8fbbd1cb2e57b4d82ecaae328e9ade1e5ed62fce5df660a22898
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?r=FireTeam HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: text/html; charset=UTF-8
set-cookie: referal=FireTeam; expires=Fri, 19-Apr-2024 11:40:55 GMT; Max-Age=3600; path=/
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GirLfuWPJQhgHCtfprsCjV9O%2BiV6BbP%2BFAmM4%2F5s4tzB3s3gyYr1pPc%2BOYdkc6tU6dVCtVKz2%2BGU05Pn7%2FR%2BKiK63dvdg%2B8nltrJmuH6tHHcugaZ48awIarM7xR6zw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876c477a7c967129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| trx-core.cc/img/bg.png | 188.114.96.1 | 200 OK | 480 kB |
IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typePNG image data, 1920 x 1080, 8-bit/color RGB, non-interlaced Size480 kB (479750 bytes) Hash3daac210489aebfa57f60e086237ee0b f9d18ac0f35531c734510ef23637ee3e60e70aa6 42db030a2d7e7d4059f0a14277f7b6a96be743f452a4dbcf9ee1f18e30293229
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /img/bg.png HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/css/style.css?v=119
Cookie: referal=FireTeam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:56 GMT
content-type: image/png
content-length: 479750
last-modified: Sat, 30 Mar 2024 16:40:48 GMT
etag: "66084090-75206"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 881815
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UNUVJTp0UMa8MWJgkeyU9w3nHMgqHCp9TpqqB1QDv5SLURtL6%2BYO2fYvoCVFacCUljjDSSm%2Fv4bJzCwbJHc1inzyjgxn%2FijXk%2BXVKWVD6BpgGh91P75CtuXTBvjDdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c477ea83356a8-OSL
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/css/media.css?v=277 | 188.114.96.1 | 200 OK | 12 kB |
URL GET HTTP/3trx-core.cc/css/media.css?v=277 IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typeassembler source, ASCII text, with CRLF line terminators Hash8aa789eae7014d16eae5229b88c6fc2f a04e7ca866147fa687586f7381a0e345523761fc 814836f2cc846bc8dfbfaa10448feeeec4d4a3f79eb91b9f82e46f5ab6b30c63
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/media.css?v=277 HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: text/css
last-modified: Tue, 09 Apr 2024 16:29:54 GMT
vary: Accept-Encoding
etag: W/"66156d02-2f86"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 842711
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g5Mk2tih3w1FcibRsBBLv8QT7bGyQu5iMN3kcTjzmw72UxnSGsa%2Fke720MWA4%2B%2Fa0mKHz7ZE%2BRAoBdtIBue5FcThT8lYOfeY6Eh7EH2b2wYmiBPQVb6JV89H6SaiTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876c477bede756a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| trx-core.cc/css/style.css?v=119 | 188.114.96.1 | 200 OK | 36 kB |
URL GET HTTP/3trx-core.cc/css/style.css?v=119 IP188.114.96.1:443
Requested byhttps://trx-core.cc/?r=FireTeam CertificateIssuerGoogle Trust Services LLC Subjecttrx-core.cc Fingerprint8A:69:11:A0:B8:40:B7:FD:16:4A:3A:55:46:F4:F0:B9:41:68:24:7F ValiditySat, 23 Mar 2024 12:57:48 GMT - Fri, 21 Jun 2024 12:57:47 GMT
File typeASCII text, with CRLF line terminators Hash93ccc1f942b3292e9bb637cdda4de82b 419673427185ec17e0f4a24938454d42a47235ee 1cd34f0394f4c7c53560392938497fd1f57958f49e3bcbd966ea9b1456fb4423
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/style.css?v=119 HTTP/1.1
Host: trx-core.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trx-core.cc/?r=FireTeam
Cookie: referal=FireTeam
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:40:55 GMT
content-type: text/css
last-modified: Mon, 08 Apr 2024 19:21:42 GMT
vary: Accept-Encoding
etag: W/"661443c6-8c04"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 842711
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wj0M7J2x2TNvfXotw1GGmU5cq83YiJuCdZBaUO7M9y1qNJyAZffSTQypZCYz12Eo6CdqFYyIzm5fBIFBcht%2FUon2CeSpzY2AWmhDr1RcDsUED8eBzvZj7%2BIp9r2J2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876c477bede656a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|