{"report_id":"f72a38bc-5659-493b-adc7-dd22a1d4ebad","version":6,"status":"done","tags":[],"date":"2024-05-30T15:15:43Z","url":{"schema":"http","addr":"app.pbapi.xyz/api/v1/extensionConfig","fqdn":"app.pbapi.xyz","domain":"pbapi.xyz","tld":"xyz"},"ip":{"addr":"3.215.28.136","port":0,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"app.pbapi.xyz/api/v1/extensionConfig","fqdn":"app.pbapi.xyz","domain":"pbapi.xyz","tld":"xyz"},"title":"app.pbapi.xyz/api/v1/extensionConfig"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-25T14:55:48Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"app.pbapi.xyz","ip":{"addr":"3.215.28.136","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"domain_registered":"2024-04-25","domain_rank":0,"first_seen":"2024-05-06 22:06:25","last_seen":"2024-05-26 02:59:11","alert_count":0,"request_count":1,"received_data":106406,"sent_data":490,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"app.pbapi.xyz/api/v1/extensionConfig","fqdn":"app.pbapi.xyz","domain":"pbapi.xyz","tld":"xyz"},"ip":{"addr":"3.215.28.136","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-05-30T15:15:18.519Z","timestamp":1717082118519,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"pbapi.xyz","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Tue, 30 Apr 2024 00:00:00 GMT","end":"Thu, 29 May 2025 23:59:59 GMT"},"fingerprint":{"sha1":"67:DA:4B:77:C7:FD:56:D7:D2:99:20:75:B5:C9:03:00:99:12:C4:E9","sha256":"78:DB:86:04:DE:31:86:CD:58:D4:12:03:9C:F9:8F:14:68:9A:18:88:C6:3B:E7:11:AC:E4:75:7B:66:0F:C8:96"}}},"request":{"raw":"GET /api/v1/extensionConfig HTTP/1.1\r\nHost: app.pbapi.xyz\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 30 May 2024 15:15:18 GMT\r\ncontent-type: application/json; charset=utf-8\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: *\r\netag: \"ur391rr93c8h13\"\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":106076,"size_decoded":106076,"mime_type":"application/vnd.mozilla.json.view; charset=utf-8","magic":"gzip compressed data, from Unix","md5":"1ac52b0ca664ef85cc839667e0c38aaf","sha1":"e7bcf3cf53f13aa8190ea64d58ed621798f5ffec","sha256":"ce170e15bc1b27c4a71ee1dd2656068195c253306004de9747c7cdaf53dde299","sha512":"e00a663d6936d42f392d818899bc3cd2023b69b6eb3f53d4cffb74b0bb8b682e5c97a2f124f3a796e82aabfe5b484c679b9b84406cd1a6d6d545d01a6d65b254","ssdeep":"3072:nIZQ3SBOO0IpxHuNcAnr1CNRTdw6OzvELgCtC:Otbx6rSRTlObELDC","tlshash":"dda3124399881c9cee9be86c690fb141e76155c6a5e3ca108fa11f376cdef164eca073","first_seen":"2024-08-19T21:15:52.805391Z","last_seen":"2024-08-19T21:15:52.805391Z","times_seen":1,"resource_available":false,"data":null}},"time_used":721,"timings":{"blocked":295,"dns":2,"connect":95,"send":0,"wait":129,"receive":0,"ssl":198},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}