Report - launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/

Report Overview

Submitted URL
launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
IP
104.21.10.110
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-07 19:34:44
Access
public
Website Title
White Custom Clothing Pack // RARE LEAK - EUP Files - LauncherLeaks.net
Final URL
launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
106

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
yt3.ggpht.com	203	2008-01-16	2014-01-15	2024-05-06	520 B	2.0 kB	142.250.74.161
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-05-07	411 B	22 kB	151.101.129.229
code.jquery.com	634	2005-12-10	2012-05-21	2024-05-07	411 B	32 kB	151.101.194.137
use.fontawesome.com	942	2012-10-18	2017-01-30	2024-05-06	3.6 kB	813 kB	104.21.27.152
i.imgur.com	5110	2009-01-09	2012-05-21	2024-05-06	844 B	1.8 MB	151.101.236.193
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-07	466 B	3.9 MB	142.250.74.106
i.ytimg.com	109	2007-12-11	2012-10-03	2024-05-06	450 B	29 kB	142.250.74.86
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	450 B	21 kB	142.250.74.132
launcherleaks.net	unknown	2024-03-08	2021-05-27	2024-04-18	32 kB	11 MB	104.21.10.110
jnn-pa.googleapis.com	2640	2005-01-25	2021-11-16	2024-05-07	2.5 kB	44 kB	142.250.74.170
i.gifer.com	37112	2003-04-27	2018-03-26	2024-04-21	420 B	366 B	0.0.0.0
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-07	3.2 kB	223 kB	216.58.207.227
www.youtube-nocookie.com	3123	2009-01-23	2012-05-31	2024-05-06	5.7 kB	1.1 MB	142.250.74.78
play.google.com	34	1997-09-15	2013-05-31	2024-05-07	2.4 kB	2.2 kB	142.250.74.78
i.gyazo.com	72426	2007-08-31	2014-03-14	2024-05-02	447 B	158 kB	104.18.24.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed
2024-05-07	medium	launcherleaks.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (162)

	URL	Size	First Seen	Last Seen
	unknown	877 B	2024-05-07	2024-05-09
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2024-05-07 21:34:47 Last Seen2024-05-09 06:53:37 Times Seen4 Hash 0fbd16355d3227742ca5c735403273ab dd24e9345c5c41f209aa447cd389864e127b2417 ebe1a48ff7d03181a2b6b9f6b75b761188b74a4648c7ce04227648b48ed678a5 Loading...

	launcherleaks.net/uploads/javascript_global/root_library.js?v=f71abd72281715110437	354 kB	2024-04-06	2024-05-19
Pretty URL launcherleaks.net/uploads/javascript_global/root_library.js?v=f71abd72281715110437 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-06 18:45:54 Last Seen2024-05-19 06:47:46 Times Seen39 Hash 7cbb9aaf57dbc57cb1f08313a6a1958f c51bdede7f247aff1303f30bc04542d47ba1ca72 a422773a794729cf98ce172eec6df5c82174cef1021174af4fd71dddb65d86a4 Loading...

	launcherleaks.net/uploads/javascript_global/root_framework.js?v=f71abd72281715110437	447 kB	2024-05-07	2024-05-19
Pretty URL launcherleaks.net/uploads/javascript_global/root_framework.js?v=f71abd72281715110437 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:34:36 Last Seen2024-05-19 06:47:45 Times Seen33 Hash 50791ee1f0d3b2adf2d6c69e6ba39bf7 89ac8af38c365405139f63ce0b865f93f5668bcd 60253d41c720b041f9f16425c069a52a4649cc15df0e0d19a31739446ea16b8a Loading...

	unknown	163 B	2023-04-14	2024-05-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 06:36:23 Last Seen2024-05-19 06:47:45 Times Seen300 Hash 411867b319241d427a5b90e512a1e738 77c9861729f51f36501e4aaa7a4f8bda898b40b1 c1c19f5ec30646ad750d86fc0dd2fdc2b6e08f3939a3f7cbfd94ec8c1c379f81 Loading...

	launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/	754 B	2023-09-29	2024-05-19
Pretty URL launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-29 12:27:51 Last Seen2024-05-19 06:47:45 Times Seen32 Hash d90699ff0cbec337c87a1ddb61a2dd87 d9fd9e8f7648949adfbeef3e287f5379f53223f6 62411a27a2991326bcd74c93512d5f2d2690f6fbe0950fb8c693eaa525b4c67d Loading...

	unknown	17 kB	2024-04-26	2024-05-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 00:57:30 Last Seen2024-05-19 06:47:47 Times Seen38 Hash 9e272c457e8ec0e369564c580ef9f882 007f62cf572d4c263b245ce6174989675fb5a9fc a4156775c0f3a08ac4489f72566dd73853c7566c3e75e083d2d0acbf72acdbae Loading...

	launcherleaks.net/uploads/javascript_core/front_front_core.js?v=f71abd72281715110437	38 kB	2024-05-07	2024-05-19
Pretty URL launcherleaks.net/uploads/javascript_core/front_front_core.js?v=f71abd72281715110437 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:34:35 Last Seen2024-05-19 06:47:45 Times Seen38 Hash 1612610c00673b890b0f26e0d269ebcf cda49bb78ebb69eb3adc6ca326d1f4cc407fdec0 5006e6adadffb976db882bfcde9fe4baca631b4ba497ad4c4988118f793319fa Loading...

	launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/	57 B	2023-03-07	2024-05-19
Pretty URL launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:59 Last Seen2024-05-19 15:34:47 Times Seen11210 Hash 2a2781f9bb6302c2f96df0d1e96ef524 796bb90146495848c0c479533c367edadb94f1a9 1b60af0ce49d65e8b1006457c16883d60e53a0054bb157c57c3b03a82ee9964d Loading...

	www.google.com/js/th/OfRUkPbLLmIJHiz0sRQ6wXEqxeMXOYMNgt9OZuziQhg.js	53 kB	2024-05-07	2024-05-16
Pretty URL www.google.com/js/th/OfRUkPbLLmIJHiz0sRQ6wXEqxeMXOYMNgt9OZuziQhg.js IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 10:03:25 Last Seen2024-05-16 08:33:19 Times Seen228 Hash 04e63424458140569a22bbfa84649e42 5fc8f8462d527e0da3061e14b63b8d60dc8311aa 39f45490f6cb2e62091e2cf4b1143ac1712ac5e31739830d82df4e66ece24218 Loading...

	www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed	108 B	2023-08-01	2024-05-19
Pretty URL www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-01 01:42:54 Last Seen2024-05-19 16:10:01 Times Seen22994 Hash 6247dd5d2d787d98a0d5e4966146d550 51dcfa67e8318f689e1a4589a9def15c6f9a23bd cbb9ab7439a233ff75c44799819b7a7de5fdb18f4e30f0236430bc751530c211 Loading...

	launcherleaks.net/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.9 kB	2024-05-07	2024-05-07
Pretty URL launcherleaks.net/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 21:34:47 Last Seen2024-05-07 21:34:47 Times Seen1 Hash 484873b11512f5c41a5c1876f0a494b7 7211d69f5f3a19cbaa5f3f2b7559edcafaec6688 441eef5b463d20f6b313981b7a954dda1e312fbfd61a180c97851304509f8191 Loading...

	www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed	134 B	2023-03-07	2024-05-19
Pretty URL www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-19 16:10:01 Times Seen35357 Hash e18eb9d0972d240f1a5456179bb6523b 65255f106adcff2907a98e295a8e7a38fe2884c4 3d68db2b85d5a2915743399f09dc438963f0c50f68b02df05d47a372661603e8 Loading...

	www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed	2.1 kB	2023-10-25	2024-05-19
Pretty URL www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-25 23:30:09 Last Seen2024-05-19 16:10:01 Times Seen14066 Hash e795f2b1b495c31028edb86cb4f4e7b5 d5d0d2d9e1538e5869ff9828d64664b94d6de653 02c0ff09b0683b8853beac78e1dd6a3af9a8e10691130f6e1ff99647756e541f Loading...

	launcherleaks.net/uploads/javascript_downloads/front_front_view.js?v=f71abd72281715110437	4.4 kB	2024-04-26	2024-05-19
Pretty URL launcherleaks.net/uploads/javascript_downloads/front_front_view.js?v=f71abd72281715110437 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 00:57:31 Last Seen2024-05-19 06:47:46 Times Seen13 Hash cd424df2e19001957d9b617ad663584b cf85856e313b8eadb65e0df144f50b3d5f8acaab 2b7f2a204704ff4eff6d146ccd3ae575e85450e3e7b7ca1bd8bfee59a2535544 Loading...

	launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/	1.4 kB	2024-05-07	2024-05-07
Pretty URL launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 21:34:47 Last Seen2024-05-07 21:34:47 Times Seen1 Hash 555829c3a5f590ec21f16b0d3eac00fa 0297e88498359ceb7a17b994f634e4829fdd16bd 7e0d17ead54d1eef26e5350917624eda027516d3354b8f3516b4c8a019c0375f Loading...

	unknown	166 B	2023-04-14	2024-05-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 06:36:23 Last Seen2024-05-19 06:47:45 Times Seen298 Hash b3e842a6c0f384dd341556f48a584fa1 ae83201c7d3a8c7f08b46557c85a214329b31872 ebf5058ae600c9966d2c3ef0835639c0d0702743c378ffb1c7b5e47c0b5176bb Loading...

	launcherleaks.net/uploads/javascript_global/root_front.js?v=f71abd72281715110437	105 kB	2024-05-07	2024-05-19
Pretty URL launcherleaks.net/uploads/javascript_global/root_front.js?v=f71abd72281715110437 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:34:36 Last Seen2024-05-19 06:47:46 Times Seen30 Hash 6e01bd7e0c52534ffbac351178db9e8e fe8fab060ac244b1d09bb18e621d72646e59f55e bfc743c8d846e46e5ed124a9e25eee9a63bbf98cd332650fb1eb13ae6e7220cd Loading...

	www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed	82 kB	2024-05-07	2024-05-07
Pretty URL www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 21:34:47 Last Seen2024-05-07 21:34:47 Times Seen1 Hash 878e9f6051db4a51b64beaae21981621 b59e4362734d490f74e0e8f9309f9b177b05621f de1462a25697b2b37ebec1b92623a040fd38d18b515a87a55905d4b4724ec9ec Loading...

	launcherleaks.net/uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js	135 kB	2023-05-21	2024-05-19
Pretty URL launcherleaks.net/uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-21 21:52:57 Last Seen2024-05-19 06:47:47 Times Seen65 Hash d76dc704cfe2bb6f6a5fb1528c395c67 b58e50e0c92c404c26673305a2e4a259937c6a16 776e433644a3f8258ae65109332b33eaf7f9d98de6d9dff61624a84db0ca0988 Loading...

	launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/	934 B	2024-05-07	2024-05-19
Pretty URL launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 19:34:35 Last Seen2024-05-19 06:47:45 Times Seen30 Hash 20a64d799591c9b87f6637cbd6d82b3d 17ddc2b3fac5b4171e9850450845031747e9b17e 64ba70c3b4405945ce4c0c56d7cc2f3295311f76effc2f952e86c7530bac808f Loading...

	www.youtube-nocookie.com/s/player/edea0cc6/www-embed-player.vflset/www-embed-player.js	327 kB	2024-05-02	2024-05-11
Pretty URL www.youtube-nocookie.com/s/player/edea0cc6/www-embed-player.vflset/www-embed-player.js IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 20:17:02 Last Seen2024-05-11 13:40:51 Times Seen270 Hash 313f662ec66b3cb94106e411fba15e0d 39becc293c40b248ce60fafca7413f567d34fa03 d2d3f5afdcae3fd0b7ba628ff725ffc86cb50322d0f0900158ea19e2de701d5b Loading...

	www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/remote.js	121 kB	2024-05-02	2024-05-08
Pretty URL www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/remote.js IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 20:17:03 Last Seen2024-05-08 16:14:39 Times Seen124 Hash fc46085092eeec2598954a4493d1e8d2 568269777dce5af286e8e1498578e759552b391f 7af63a9cb99fbdb146894f4665ab18e932deff6e246e36dbc6c93d178a62b749 Loading...

	unknown	164 B	2023-04-14	2024-05-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 06:36:23 Last Seen2024-05-19 06:47:45 Times Seen299 Hash b750e6c6113e9f8c308d46e706440977 d594ae97a1ff12e12846a8fc62dc153d45223b7f 1f833e4732eb802ef961cf2b0dc34fc95839c03054c4a5bec0a541b4f062a487 Loading...

	launcherleaks.net/uploads/javascript_global/root_map.js?v=f71abd72281715110437	2.6 kB	2024-05-07	2024-05-07
Pretty URL launcherleaks.net/uploads/javascript_global/root_map.js?v=f71abd72281715110437 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:34:35 Last Seen2024-05-07 21:34:48 Times Seen2 Hash 2433aa9ef79c509ae7a6f74233a17d52 9e13d97b5137a1d4e1a252c97bbfecce675fa023 bfb0d1c905ab2ace504a4e2b3df77e52a2415f8b898b57d24cf9a5de58eac822 Loading...

	code.jquery.com/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-05-19
Pretty URL code.jquery.com/jquery-3.5.1.min.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-19 16:11:41 Times Seen145567 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed	1.0 kB	2023-06-13	2024-05-19
Pretty URL www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-13 01:22:29 Last Seen2024-05-19 16:10:01 Times Seen24538 Hash fe81353f0c3e106bb59598d92fd49a12 cd09955588a1d236a25a76d3f774418a829cb5c4 a366197fa3629365ab26195a99befce51c8f8ec90252df02e0b4cb44bd52d020 Loading...

	launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/	152 B	2023-03-13	2024-05-19
Pretty URL launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 20:48:10 Last Seen2024-05-19 06:47:46 Times Seen145 Hash 32ee5f1e31e3be36abdcd7f154a65c74 08739291134455f7e553ec3185d6ba923b7a658c 50e20db0de17fdccd7711d55b90c78559824b9457ab3aa9712fe4183af906a1f Loading...

	launcherleaks.net/uploads/javascript_core/plugins_plugins.js?v=f71abd72281715110437	1.1 kB	2024-04-26	2024-05-19
Pretty URL launcherleaks.net/uploads/javascript_core/plugins_plugins.js?v=f71abd72281715110437 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 00:57:31 Last Seen2024-05-19 06:47:46 Times Seen32 Hash f47067a41e54253a29308eb2e67c5257 3b81b436be06acfb8bc9819fab27e42c4b4af8b0 bdf77d658c86b10a9a85b4349845dc373d1f8bb3cd4e9dfb9d1103101172b9db Loading...

	unknown	247 B	2024-05-07	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 21:34:48 Last Seen2024-05-07 21:34:48 Times Seen1 Hash 4743e4722eb48dad85598f0062a73d9d 3595b3f718f0f65f7dde1df1e8206b9c8d76f7c6 cd10b370d8402973c127fee21a92c7825e4cd2622206109d387c4f4bb8324122 Loading...

	www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/base.js	2.6 MB	2024-05-02	2024-05-08
Pretty URL www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/base.js IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 20:17:02 Last Seen2024-05-08 16:14:39 Times Seen180 Hash 24357d162136b2dde3e7ee1cd01e37a8 b6c2391bb4efb971fb9169d3ccf68330a36e255b f6d29981d8acb8584ff00b6a55f3ee5d3f105b991b78562c4fff89c36915adc7 Loading...

	www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/embed.js	63 kB	2024-05-02	2024-05-08
Pretty URL www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/embed.js IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 20:17:03 Last Seen2024-05-08 16:14:39 Times Seen159 Hash ee6c1e2c91384312d0ebf1df4325861f ee558609ed5fec4c297e71873e081471bfbdec10 113f71981587732239fcb3db6755eee7fe3006d7397bd8866d0482337b06f5ec Loading...

	launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/	437 B	2024-04-26	2024-05-19
Pretty URL launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 00:57:31 Last Seen2024-05-19 06:47:46 Times Seen31 Hash 7301321027f6dcc230eccabd2cf858ab 178e26972661057ac35c24325f5105cdea367a7d a3bfff7b98413607f8284bf6a35b860e5d3c35be9f4cffcdfe9844a7cf7667c1 Loading...

	launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/	749 B	2024-04-26	2024-05-19
Pretty URL launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 00:57:31 Last Seen2024-05-19 06:47:46 Times Seen31 Hash 9682254ff6eac77cb2baf06c8ae9a356 8e68982bc6e6f847d5acaf95a326aff4296f28b9 44f659bdf4df037e0c5e4bd81f8fd7ecaa434d55f3e5608c9fe28362fd0a6816 Loading...

	www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed	26 B	2023-03-07	2024-05-19
Pretty URL www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-19 16:10:01 Times Seen35291 Hash 173a08c5d6adc5c93611a599bcb2c717 735a7301e66ae2c3584357f7bf0bf09eefb62df0 271e6368679a21c3416e2a0325db33d6bc445d601c72a49914081b5efd0cdf3f Loading...

	launcherleaks.net/uploads/javascript_core/global_global_core.js?v=f71abd72281715110437	39 kB	2024-05-07	2024-05-19
Pretty URL launcherleaks.net/uploads/javascript_core/global_global_core.js?v=f71abd72281715110437 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:34:35 Last Seen2024-05-19 06:47:47 Times Seen45 Hash 5ff684590fec461dcdd6b828227c33fa e744b611415ea7633f726fc192bcc329ac9098cc a51566d963014d0e21f963bf48131950fd463ff1e234c31ebc9b346a775db42d Loading...

	cdn.jsdelivr.net/npm/sweetalert2@11	76 kB	2024-04-17	2024-05-11
Pretty URL cdn.jsdelivr.net/npm/sweetalert2@11 IP 151.101.129.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 18:06:27 Last Seen2024-05-11 08:44:08 Times Seen91 Hash 230c939d3b3fc96a5cf7fec7d22891c0 5c664950c68e5630583db458390152ad0e1c64d9 ef7aceda0ec9484ac6f22b195c2b1edfd29fe721ae78f823cafa2dffc71108d4 Loading...

	launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/	1.1 kB	2024-05-07	2024-05-07
Pretty URL launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 21:34:48 Last Seen2024-05-07 21:34:48 Times Seen1 Hash 325b3f12db837bba03b968977059e13a 7e434a47a2d17f974020228db8ed80e31b9de359 2b85df17df26acb26550dd6a756ae042967a409d6e3b9df009357f6ddb80b9e4 Loading...

	launcherleaks.net/uploads/javascript_global/root_js_lang_1.js?v=f71abd72281715110437	108 kB	2024-05-07	2024-05-19
Pretty URL launcherleaks.net/uploads/javascript_global/root_js_lang_1.js?v=f71abd72281715110437 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:34:35 Last Seen2024-05-19 06:47:47 Times Seen46 Hash dfb4f4a37cacac558a02e348876805dc a3c9316578d617bd8869a2a234b2216586b27a45 8a21a5cc24b20509a317b3fb30c4a0feabc3eed7d754d402ccdb07e07341e8af Loading...

	www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed	74 B	2023-06-26	2024-05-07
Pretty URL www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-26 22:06:31 Last Seen2024-05-07 22:06:23 Times Seen22242 Hash ccb754e8fcd1e8e893b7bed4939523ca 68a319410da1aef2fd70a8ebc458817aaecbfdd1 d84a8e7de97afc23d0e458cfb0adccb09dfc8ef4ed8b9a6159d8ceb091fe03f0 Loading...

	www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed	13 B	2023-03-07	2024-05-19
Pretty URL www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-19 16:10:01 Times Seen35263 Hash d8fb965e7ead2924508e97e5326bd3b1 fae376d0cb54d4433b7bdc9aba04690cd6cb5d27 57bb660c2fdf4369ff8e37f99b26963dba87c120b80c443ff3d31e030ab3a0f5 Loading...

	www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed	62 B	2023-12-25	2024-05-19
Pretty URL www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-25 10:33:36 Last Seen2024-05-19 15:26:14 Times Seen126 Hash 64edd516e53a07c2639483c75d592e47 b6dfc177bb3433f727d62745b77db4a3d4a8c003 63441b03acb5bf8db7d8bbf371ef37ca7f9ba46f7dc5e5e2204f1b73b9e8a82b Loading...

		Size	First Seen	Last Seen
	#1 Eval - cc500d09bd51cb80923bb3c9149174e8	2 B	2023-08-24	2024-05-16
Pretty Observations First Seen2023-08-24 12:29:32 Last Seen2024-05-16 08:33:19 Times Seen362 Hash cc500d09bd51cb80923bb3c9149174e8 d5377c655a9caa4b92e92c6b8809637eaec1aedb 09db5330557719f00f35a15729bbda5b8232c2df9ecb826495fc78b79bab1393 Loading...

	#2 Eval - 34d1f91fb2e514b8576fab1a75a89a6b	2 B	2023-06-15	2024-05-16
Pretty Observations First Seen2023-06-15 17:32:35 Last Seen2024-05-16 08:33:20 Times Seen159 Hash 34d1f91fb2e514b8576fab1a75a89a6b 1ec558a60b5dda24597816c924776716018caf8b 4cd0e21a9a0795a14ec9aa5f0e7d1abff0492565770e43eafdf1e3e8afed1f33 Loading...

	#3 Eval - 5acf51e49b866981494d78219cce7c95	182 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 5acf51e49b866981494d78219cce7c95 d93b2794d8f4c11a344ab87ffc650a4a32e76955 52804697cac426360c39322ca988211a33aebf9f04bc98e1bc7beff149d655df Loading...

	#4 Eval - 8d8b85adc4d2474a84fbca1381afb3c7	83 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-05-19 16:10:02 Times Seen40696 Hash 8d8b85adc4d2474a84fbca1381afb3c7 3815645d5a8680fd3ed4ce5a3b82f8d432448698 3eb8abc484d33a620c974de75babdd2caae4fff7dc8daad7d860dd41c93ee611 Loading...

	#5 Eval - 18c65fdd35d47fa3ef26f9974dc732a5	53 kB	2024-05-07	2024-05-07
Pretty Observations First Seen2024-05-07 21:34:48 Last Seen2024-05-07 21:34:48 Times Seen1 Hash 18c65fdd35d47fa3ef26f9974dc732a5 cc06d3d2a4d501be3dd54ec220a641ca24c543fa a291bdae32022f86e11b8a43bb3febbddbf1227790fefa58407cd36fc071a003 Loading...

	#6 Eval - 9a6cbf62f1221ef60de2f10a1c27b345	2 B	2023-03-07	2024-05-16
Pretty Observations First Seen2023-03-07 12:03:40 Last Seen2024-05-16 08:33:20 Times Seen428 Hash 9a6cbf62f1221ef60de2f10a1c27b345 ad1bc185579a64f1d7d550c625a49d41f6387067 8815e495916491117e507166abc72304bdc0e1293820213bdc068b630357bec3 Loading...

	#7 Eval - bd4496eb0285aba06273987971f6063a	35 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-19 16:10:02 Times Seen39747 Hash bd4496eb0285aba06273987971f6063a 8c7d085c9d54b41debd437430b6852de7f898857 f2a353ed5469812b863c5fbeb58b4d46b864ba4e20a49f57f9c44c7cda45f46b Loading...

	#8 Eval - 645d56f491d502a8bfa275f714c13525	106 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 645d56f491d502a8bfa275f714c13525 8452b76056d8d23bb7a693a6da0dc030ae32c5d4 edb24a72f76b91c83d3e69341a8a1796044bdb5ad2663c5dcc386d18256cb1ad Loading...

	#9 Eval - 7fc56270e7a70fa81a5935b72eacbe29	1 B	2023-03-07	2024-05-18
Pretty Observations First Seen2023-03-07 01:15:06 Last Seen2024-05-18 17:08:48 Times Seen8269 Hash 7fc56270e7a70fa81a5935b72eacbe29 6dcd4ce23d88e2ee9568ba546c007c63d9131c1b 559aead08264d5795d3909718cdd05abd49572e84fe55590eef31a88a08fdffd Loading...

	#10 Eval - 4e2eb8aa879b381ee5ef275d91aa05f4	22 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:29 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 4e2eb8aa879b381ee5ef275d91aa05f4 a609e222bcbb2da98fa4253875cb6fb19116ac6c 6e5786c1059eee9baed94866b81ee9b898ea9fc9d9389d6fc4c08aa7c487d5e2 Loading...

	#11 Eval - 2037ba3ca97b10f596c09be05fc4ce73	353 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 2037ba3ca97b10f596c09be05fc4ce73 13f7820ca9aec20537212aea910d4bc600b7fbb6 001476fb76880d8fc98548aaa166f099c7eda3bf83a666e765290f1e7ccae677 Loading...

	#12 Eval - 9997a17decc52d3cfe49232e3701752e	107 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 9997a17decc52d3cfe49232e3701752e dedd3377268cdc952e223b169fc05d5c70696792 ccdc2789d0271484c053ff8dfe28b1e4a55d04dbfc799d4b0cca6b4ab7875e48 Loading...

	#13 Eval - 05b8c74cbd96fbf2de4c1a352702fbf4	6 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-19 16:10:39 Times Seen56768 Hash 05b8c74cbd96fbf2de4c1a352702fbf4 320ad267d8d969f285eda5c184f5455bd29c8c95 44ff7b02c80d38b26dd6aa31d9470aed81b32e10331a3c994fb1a9945fd847ba Loading...

	#14 Eval - 04d0cc13aee295af83ffa2649f78a18b	26 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 04d0cc13aee295af83ffa2649f78a18b 1bae9fa47dcd33bb638d51d81133b973c45edd0e 160327f1b1ceab9b50a37834b7a16c9cfbb3529ffacb8b552aec9b22fc56e01b Loading...

	#15 Eval - 968df903a4592d48a79b38744e0040fe	130 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 968df903a4592d48a79b38744e0040fe 0c1c964f1207f089fe9592fe713670bd970860eb b01b06dce9f091c926145995a77a0c6602903ea6322b13a68ed73e19a94b9452 Loading...

	#16 Eval - 18670245849a7ba01669bdac40144a82	2 B	2023-03-10	2024-05-16
Pretty Observations First Seen2023-03-10 00:34:23 Last Seen2024-05-16 08:33:19 Times Seen405 Hash 18670245849a7ba01669bdac40144a82 e3abab127fc08e943b5af4ddc724ad02fac18949 82cefa8283d30fda9c86f8a976b95d79b395d4cff62a3c8242c7153039bfcde6 Loading...

	#17 Eval - 8f5be4386cfaf04c722340bc44f60623	78 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:25 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 8f5be4386cfaf04c722340bc44f60623 4d9ef57ec9285b509232e9182dd24923eb50487b d8b23787c94fcb0f5ff7c18e3aa82f8c8443bcfc97adb6bd8a861bbae5f3cd03 Loading...

	#18 Eval - f465da03521180d47c811a98c793a2d6	9 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-19 16:10:02 Times Seen34329 Hash f465da03521180d47c811a98c793a2d6 9b76105ff4c8bb84cd630914d772f4cc73df0155 e8183224e440eb4578fd87c4c47735f9ede4c43b1c6ebbdcd7033e98aba6a009 Loading...

	#19 Eval - 0d80d99d7f209071a284c9ab6d14accf	83 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-19 16:10:02 Times Seen55028 Hash 0d80d99d7f209071a284c9ab6d14accf c91e7389c28a7b35eeb114484808a20cddb8c20e 0cb21d1de060008bab472c15c63e6f15828de601f85deff00d701d26c0f6819a Loading...

	#20 Eval - 7e73ed0c72d6c229afd2bde6cbd45975	2 B	2023-06-09	2024-05-16
Pretty Observations First Seen2023-06-09 09:51:58 Last Seen2024-05-16 08:33:20 Times Seen136 Hash 7e73ed0c72d6c229afd2bde6cbd45975 9c1107f858b37bb6ca3e07a0b0a4755d515f83f6 7ec44228eaffb4580eb5e8fecd4f0ba082527ef66540fd875387c7932de3ac0f Loading...

	#21 Eval - a4fc536e74b68026280896ddbf495774	98 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash a4fc536e74b68026280896ddbf495774 796b6afdc12dce3dde2065b478fc6f474ce3c75a fafbe6868a1bc68b8677c2ab6d379124cecfffaacb3b36238b0b40d71a071300 Loading...

	#22 Eval - bcee415358d17b91b98f47a96ffdee8c	95 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:20 Times Seen110 Hash bcee415358d17b91b98f47a96ffdee8c d2078844fe9e7362fff462336596a92c42091d6b 26ff936f0b20a4a930184a79edbc0b3633b219611991857e9ae065a5d05e4fcb Loading...

	#23 Eval - 5593e8e7f451373324de618857520852	2 B	2023-06-17	2024-05-16
Pretty Observations First Seen2023-06-17 19:31:43 Last Seen2024-05-16 08:33:20 Times Seen488 Hash 5593e8e7f451373324de618857520852 920bca24e1bbed8358b25aa393eb7b5139b57c48 89f1e332d8c613ce01431df6e1eea8106760251f751d14880932c584673d29d0 Loading...

	#24 Eval - 5b61a1b298a0d06efa6933a97e68d763	2 B	2023-07-06	2024-05-16
Pretty Observations First Seen2023-07-06 16:44:24 Last Seen2024-05-16 08:33:20 Times Seen356 Hash 5b61a1b298a0d06efa6933a97e68d763 62a3ad0fef668c4e2a220f6982de94942fbf1d1e b1b7afa76db271451a1f3fff738ff21ed53cca91f7f580bb294193e9d2da31b4 Loading...

	#25 Eval - 011ea6f0f267e7ef85615f7d74e8f9fc	78 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 011ea6f0f267e7ef85615f7d74e8f9fc 1aa4dbf92cb5f7ad1c3b753255fc161e6dd2f87d bf8eb8fb57ca9808f77637588658975310bab8eafc380e033a67767865254835 Loading...

	#26 Eval - d48a24ae9672ee573050e4d3aeeebe4d	29 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-19 16:10:02 Times Seen54732 Hash d48a24ae9672ee573050e4d3aeeebe4d 8f8c4d27852980a1ec5a8b1aba30769001314ec8 53e5b7d706a350fe98d52499058624e15cddc1541f17370f94a899a386c50255 Loading...

	#27 Eval - a931635074a5017da74948b67e16c76f	206 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-05-19 16:10:02 Times Seen40733 Hash a931635074a5017da74948b67e16c76f a6799582ad16a7c1ab8221c166268130df6691d2 1fb437ac78114eda813a7c4d5771b6d3aa34908a5ca3b743d5eb5c79088cf82c Loading...

	#28 Eval - e29a2f2a82f422515b388facca241777	55 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:20 Times Seen110 Hash e29a2f2a82f422515b388facca241777 084fc29fba1271aa5135dacbf5bbec7eef4863e5 e64fb3f180dcc972b54417883392564ab4a70f096a52b489c5e3d608741ef516 Loading...

	#29 Eval - 51ca74a27a426ff16dde89be8a3a2a51	278 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 51ca74a27a426ff16dde89be8a3a2a51 1965943f0c7dc201ab60eee53e69a38c532dd5be 59546f2a9541fbfe074bcb4136b1f47bcd3f4a43b8faaa38ce325ecf7a5d7264 Loading...

	#30 Eval - e0b9d3be2e1f9c37fd20878c5b1511d0	306 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash e0b9d3be2e1f9c37fd20878c5b1511d0 faf6407c5ac6ffea2c587920d63adc7cd64d21b8 a8f50430bf9fc9c83a92221d1fe1d660c7819853a892e4204119e54d0c23d5d2 Loading...

	#31 Eval - 61026bfc681843bd9fd1e326ddd147aa	214 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 61026bfc681843bd9fd1e326ddd147aa 53901b843ff0570ecc80c29fe9db54c2982d7fbd d7af893de84cb41292f183a1ef096ba9018aff0a8d0b2cf3babea9728ad22c62 Loading...

	#32 Eval - afffb04a1f2e8f0cc035cfe28bf455a8	131 B	2023-07-02	2024-05-19
Pretty Observations First Seen2023-07-02 14:54:05 Last Seen2024-05-19 16:10:02 Times Seen17515 Hash afffb04a1f2e8f0cc035cfe28bf455a8 920c52f3e931c79600ab73dca9d4baceaa721aa3 1224c72af04d20c26e9dea6a1295f8703ef495872d17d051e94ac95dab0cf66a Loading...

	#33 Eval - f732ff6ab3835e6c8cc56a32e7fa24ee	61 B	2024-05-07	2024-05-07
Pretty Observations First Seen2024-05-07 21:34:48 Last Seen2024-05-07 21:34:48 Times Seen1 Hash f732ff6ab3835e6c8cc56a32e7fa24ee 38ef3a5617199667cb3be37b3814f345e80afc5f 6f7bbcd6dcfc4abff11fd64ec643e8218bacc2423494ebdb3225281faae91cde Loading...

	#34 Eval - c86ee0d9d7ed3e7b4fdbf486fa6c0ebb	2 B	2023-03-12	2024-05-16
Pretty Observations First Seen2023-03-12 15:00:45 Last Seen2024-05-16 08:33:19 Times Seen164 Hash c86ee0d9d7ed3e7b4fdbf486fa6c0ebb 6fca55ca3c828a46bfe96a10e69f572b61ce540c fed1d872f6d540f4118582ec694270274e987b12f5dfe2057dddf1e12df2761a Loading...

	#35 Eval - 4f32fb1c72b066edf335f4a3673eea34	2 B	2023-03-08	2024-05-16
Pretty Observations First Seen2023-03-08 14:33:43 Last Seen2024-05-16 08:33:19 Times Seen513 Hash 4f32fb1c72b066edf335f4a3673eea34 346aa9d782e09a43d7c59d229a01154862b1a1a0 ee0afb030fe0274152779b8ca6788588440baf31aeb1fab592ee377f4211fa9b Loading...

	#36 Eval - 885ede3f530e24eafea1144525cf22cd	278 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 885ede3f530e24eafea1144525cf22cd ccd4af799f9b95d141adfe56b48dcd2ad8fa34fb d3d3d529daa69de926c2d419cb25d0f1bdfc180ba0d0ed2395c5e909f44f22d6 Loading...

	#37 Eval - 2b2f074a32345a4fd4fbf9bb4874f8bb	134 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 2b2f074a32345a4fd4fbf9bb4874f8bb 8399f902b97ade21bb5dc478ef706b3b85b753f4 c7a33cbef0d377a3c7355a63604aca7495bebe355a7eafe80aad62a73b6f1265 Loading...

	#38 Eval - 8f4c296a1a7fd0e563fce95cefded179	53 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 8f4c296a1a7fd0e563fce95cefded179 dde1d0d7a136d483c409cc149f792070d169a8b9 39a7908f3b00a9b8cc991fa458b8e7c8ba394b9769fc796ed569ee3a8015bc5a Loading...

	#39 Eval - 90749cdccc92b64023af65b2c2e09841	52 B	2023-06-30	2024-05-19
Pretty Observations First Seen2023-06-30 03:07:52 Last Seen2024-05-19 16:10:02 Times Seen26495 Hash 90749cdccc92b64023af65b2c2e09841 c462a67f6bc05d361593fd7bdc0821fc6fbb27b4 23f5d7bca8a3fd67ad081a77c0f5ab552436896346a404b9a58840870ec9eb1d Loading...

	#40 Eval - f05e68226caf926c95e24fb2ed2b6db5	77 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:25 Last Seen2024-05-16 08:33:20 Times Seen110 Hash f05e68226caf926c95e24fb2ed2b6db5 c35afe67ff12ea363f45c5a0c989236427299cd5 cc09c02fc4783eca4eab52112d7599a0701c12e03a541533a220e809f044bf04 Loading...

	#41 Eval - 0b1af8691408bee7a8a8e3bdbd62f476	2 B	2023-05-23	2024-05-16
Pretty Observations First Seen2023-05-23 20:07:42 Last Seen2024-05-16 08:33:20 Times Seen117 Hash 0b1af8691408bee7a8a8e3bdbd62f476 c7c8e5aa6f4a6e579b4088ed2127a21ee1d54812 a78dbdf984725ed42ae4198058f78206c9ee8db38b17aea60d643449aab3636a Loading...

	#42 Eval - 39f90f558263bda7391a6991c33cfa7c	78 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:25 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 39f90f558263bda7391a6991c33cfa7c e3dfea17c31251503ead9639fd206891c10490a2 8473f0e8c3d5558bc3e005b18cbf53e891eda520577916d1d6eae82fe0f941f7 Loading...

	#43 Eval - 2436f23b98933a71439259c4bca8674b	2 B	2023-03-08	2024-05-16
Pretty Observations First Seen2023-03-08 12:49:36 Last Seen2024-05-16 08:33:19 Times Seen807 Hash 2436f23b98933a71439259c4bca8674b bc8fc96cebf44a9eb1f341bfd6d0b7aadb2c1b04 8cf3ebbdacddfddd6f13673f945f523cc9813df2fcdf2a420a230d283bdf4a7a Loading...

	#44 Eval - cc56c6810fa6f1473f06caaecd698cab	89 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash cc56c6810fa6f1473f06caaecd698cab 92eb435adfa4095985330da692ca84678d8b57d9 f34dd9fd3d3397890760d1974183928c722dc610e4233f2081c4777c0b5215ca Loading...

	#45 Eval - 5d74f4d74a670e2e9fb35f130e9c19d9	2 B	2023-03-26	2024-05-16
Pretty Observations First Seen2023-03-26 07:31:26 Last Seen2024-05-16 08:33:19 Times Seen201 Hash 5d74f4d74a670e2e9fb35f130e9c19d9 755217aa3b1c43af74d1e406f882e851411fa65d 402536e01d46dd8d96c27fad09db7163587895d751840b49972559ffa4f10300 Loading...

	#46 Eval - 61a6f2652a0b6db05139abddb9b96ab7	38 B	2023-03-11	2024-05-19
Pretty Observations First Seen2023-03-11 13:53:37 Last Seen2024-05-19 16:10:02 Times Seen11135 Hash 61a6f2652a0b6db05139abddb9b96ab7 05548eab56f32db3c8c42fd2487a3f3b3ccf0ee1 cc6e0d6af3dc4f620458aa79c4f4c0631ebc1bd55a148f5e9a06ea8874885831 Loading...

	#47 Eval - bd76a62d8b723bf5ca87742510c2893a	132 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:19 Times Seen110 Hash bd76a62d8b723bf5ca87742510c2893a bba75f68c01a248e3233d56b166d55c8a9c4c1c4 1c92429cc91f473fa890afee6edaaa4991bc4ba6a3d41d2db7ee349b7e98b6c6 Loading...

	#48 Eval - 191dc3e5b9e63c466c01771e8efd8f9f	437 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 191dc3e5b9e63c466c01771e8efd8f9f c553732ca7e571e100012cd3403e7e045b8b2925 3feb5175125af729d92ae16b777877fb5a65b7e396388847e8e99173d83d8a3c Loading...

	#49 Eval - 2a31370aa9591eb82b7253e518f8ed31	132 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 2a31370aa9591eb82b7253e518f8ed31 30879eceaee71471c6e90aad72960aa6a5b1e8e4 c667426c71c5c34f747f8f7730f7ea3af7f396a8f987bf65fc9ef899dca7d0fe Loading...

	#50 Eval - f2f3fe7a0d9d391b74576a2712087471	160 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:20 Times Seen110 Hash f2f3fe7a0d9d391b74576a2712087471 4c3135a5d95a756de71b0ef4e0a25ad5f8edd169 2f82dee86f41d2a3600ec265c9c4eb2b84e91911634ddadb5cfe4c2da8f0bb69 Loading...

	#51 Eval - 96d66a4d9708fdb6dd5597f3bbc7d624	195 B	2023-03-08	2024-05-19
Pretty Observations First Seen2023-03-08 14:47:45 Last Seen2024-05-19 16:10:02 Times Seen40721 Hash 96d66a4d9708fdb6dd5597f3bbc7d624 e10a66fa8a836f6f948941262b70e1fc928a446e 3cabac574ada654802fc1c4518d870f0791a9a3ac31371677e75fb683e47ce89 Loading...

	#52 Eval - 1cd27255e426ce1317a364a1d7b8a4cc	2 B	2023-03-10	2024-05-19
Pretty Observations First Seen2023-03-10 09:28:47 Last Seen2024-05-19 16:04:17 Times Seen123 Hash 1cd27255e426ce1317a364a1d7b8a4cc 2d249cb9adf598f0788df54283aad715d4ad6a2d 8b9fcddeaa60b3e8373523a358f1e5b997dd784f445eab4ae2854670f751db26 Loading...

	#53 Eval - e018c9ef5f313dc94f94e00c9a533117	161 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:19 Times Seen110 Hash e018c9ef5f313dc94f94e00c9a533117 870a1fd33d1e36f201af7b185f8fc3bf45abf0b3 e6f458195e0934c8c1b69907ba3e5cc3ccb2845f77af6835fea49f062b51d8b4 Loading...

	#54 Eval - f453412c481f4328c61e8c107e9984e5	216 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash f453412c481f4328c61e8c107e9984e5 f2a920027e7ad2ce81e219c3a42a40a96302168f 62e5f82a7fa75db9634f6a00a6a14b5b193a7be0c6b35dbeb0d2abd5b076b13c Loading...

	#55 Eval - 144033ac5fabe34fa556ff70876308e1	2 B	2023-07-29	2024-05-16
Pretty Observations First Seen2023-07-29 09:25:17 Last Seen2024-05-16 08:33:19 Times Seen553 Hash 144033ac5fabe34fa556ff70876308e1 8fb94c6bf0c1383cc1e9e1d833e04f5336b01bbc 10ccd6f1587baa41f9806de7aa03e66b4679b0024a0d4b3bf0facf5f97d0a586 Loading...

	#56 Eval - 4c7a74563cdc6a04d2c1e29fb95e6bd9	90 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 4c7a74563cdc6a04d2c1e29fb95e6bd9 88922eb953bb8846d4fa18cb3e77b345338d5c92 3c1857e359bada486a2ba97901dcc697046e805747d5bbb2c248160b0a193441 Loading...

	#57 Eval - f3813d65c870570849dc668275108922	263 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:20 Times Seen110 Hash f3813d65c870570849dc668275108922 d46608a40dc5629384d3cc8783dfb4ea3921c64b 7b66b9583eb91805e2c35488f95b593e123b648c1864e382faf77b96ded59885 Loading...

	#58 Eval - 2158c05f6cb2e725133b96368721e84d	130 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:25 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 2158c05f6cb2e725133b96368721e84d 89d9e99facf4662229cd478f6d877d320e856aea 2677114550c8cda9c57d0e8f30707908d86dfeeb7d4726fcd4e1bfd0f3170206 Loading...

	#59 Eval - 4012803b7d1e4f8048672b0de233da06	1.2 kB	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 4012803b7d1e4f8048672b0de233da06 d34811be129ef219f8f088fefa8dfc020ea03d91 ec18dc32134b2a129bc3a18b6279df843d4ae514ec261e4e78cc98b9b12ec004 Loading...

	#60 Eval - 25c9c6e86a36892971cb445abf356636	22 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 25c9c6e86a36892971cb445abf356636 4d4f743d321612f1413032219c76b9443f60b621 d3f185d06ec314f5901648bf2a0621556fa4cb1cd3650012069ad32250703a83 Loading...

	#61 Eval - ed1c94b2e8ab5fc0b44dd41f0e52a149	2 B	2023-07-30	2024-05-16
Pretty Observations First Seen2023-07-30 15:41:27 Last Seen2024-05-16 08:33:20 Times Seen516 Hash ed1c94b2e8ab5fc0b44dd41f0e52a149 93ed392f60ed17a69ca4d5feea15c9c546210b48 fb5467c7d5c25e69bbbe5f86b128133ddccdd3d2ddcf28c037f77b53aa8fcc3c Loading...

	#62 Eval - c162221c53f44b903a65f1ce6fe851d7	22 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:20 Times Seen110 Hash c162221c53f44b903a65f1ce6fe851d7 e51a6d316ca17813cd80a4097b47437d64c64627 c1c335c6c29ed2dc6eb6281603ee67d769392b054ced7816db8a63d44a0282bc Loading...

	#63 Eval - d97d963cc4c94c3a108001fcf2377a1b	299 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:19 Times Seen110 Hash d97d963cc4c94c3a108001fcf2377a1b 143e49dc16683c7ec560a6b06c1fcaa6c19a052e 4600fc1aad4990da603b2723b0d64236880a4f9fa626a8a62b8e85b41e18237c Loading...

	#64 Eval - a78dd5e8411c67a38ac02dde3250c029	2 B	2023-03-07	2024-05-16
Pretty Observations First Seen2023-03-07 23:04:47 Last Seen2024-05-16 08:33:19 Times Seen191 Hash a78dd5e8411c67a38ac02dde3250c029 cfc4b3f0ce1e1c6ab458b0c94a18071ca7ab4626 b62c681738d13345b46a2bdd1d93ae251d1dcd65f60b83b6343ac33535738fdb Loading...

	#65 Eval - e0883496fb7f6130f2d4082ac6eaeb05	191 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:19 Times Seen110 Hash e0883496fb7f6130f2d4082ac6eaeb05 274a8bdf49b09e56e3760eba4b1aeb29332b39a3 0f7e65502d5228f67fbc583e99fee55bac5c714b40707a2b8fdea660b776f6cd Loading...

	#66 Eval - bae3f90cb000352645e35fad60da411c	35 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-19 16:10:02 Times Seen54772 Hash bae3f90cb000352645e35fad60da411c 00023f94c170125b979cb1914925d06ab1abfbce 1e3606d95ce27d593157594820335681a9380f51a96147303cd8000e60a95e12 Loading...

	#67 Eval - db361080f0532ce0a2332c9e0bc6f443	351 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:20 Times Seen110 Hash db361080f0532ce0a2332c9e0bc6f443 d9882aa783a18a6a303d9b5e848dde7726c4b049 90de5db6b15fb1ad482c64d724b4a5ec73472506e88843bf936d06d9b1690bc1 Loading...

	#68 Eval - e76efda5c8765613498a2c83ac546b81	57 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:20 Times Seen110 Hash e76efda5c8765613498a2c83ac546b81 8993770efc071f9a3df9782aaeabb23af5b993f2 87d90012dc78352976145a59dd45c6d81ba4dec1b1bb2ff56bfb992531b27800 Loading...

	#69 Eval - dd6ce525a9317feb4b1cdccd6d7f8a1d	414 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:25 Last Seen2024-05-16 08:33:19 Times Seen110 Hash dd6ce525a9317feb4b1cdccd6d7f8a1d cd2cfed447b2fa01ba6eea65ddec17105b5cb351 21ecf1cad56f534a6bc7550ab1f1be0391eeafbe019e396a077f4194fb1cc6b4 Loading...

	#70 Eval - d20caec3b48a1eef164cb4ca81ba2587	1 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:19 Last Seen2024-05-19 08:11:44 Times Seen12305 Hash d20caec3b48a1eef164cb4ca81ba2587 d160e0986aca4714714a16f29ec605af90be704d 72dfcfb0c470ac255cde83fb8fe38de8a128188e03ea5ba5b2a93adbea1062fa Loading...

	#71 Eval - 46accad6b09ed9c8f0fa6f3c1875c03b	250 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:25 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 46accad6b09ed9c8f0fa6f3c1875c03b eefb160bf45eec406c04abd0cc9c4279c37711f9 7ff995bbba48b7cf37322dcf873b283eee5a08b88f5972add5b361cc89e83f80 Loading...

	#72 Eval - c5676e51dbef8426e3f6207459a23954	71 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash c5676e51dbef8426e3f6207459a23954 39518a878447c7d787502a7c4df15539e72e2f8b 0be8082d5a779fd88ce21c005c93dbc82643af6e828254b88bce2fda2514e664 Loading...

	#73 Eval - d3662c068f826235bba9141c217dcde6	592 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:25 Last Seen2024-05-16 08:33:19 Times Seen110 Hash d3662c068f826235bba9141c217dcde6 7c1ac0c8c7c923fab3f4fe4794aaf048a17956cf 3dc08abe47885df100fe7414d0e709bc8923d63509987464603bb511b1f8e82d Loading...

	#74 Eval - ec7e679ef95e0d84f773c569d9455147	77 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:20 Times Seen110 Hash ec7e679ef95e0d84f773c569d9455147 8b708095e29d619c1a8d3a8cb4e16bcec27c1739 c9246c45f8c0e06f5106c4803be76fcb99caddf379673e6f09b0055118ff4d73 Loading...

	#75 Eval - faf9431e7156ed7129ee9bc760be32f8	280 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:20 Times Seen110 Hash faf9431e7156ed7129ee9bc760be32f8 1c48e41e48d2715351577c5fdcff109cf2ea3948 81254b228e14de48f2cabb53d6729d05ea072c92f9596d81f214fb3b174b9b74 Loading...

	#76 Eval - 26bf2567a7545ea26ce528f170a477d8	516 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 26bf2567a7545ea26ce528f170a477d8 344fd661089cadfe95c49228cecb64981c49cfa4 0f1ba3f774c9dac7b51e0dd1f233a7fc0103d1db6aaceb622eeb0b901a2ef3ed Loading...

	#77 Eval - 17a3f5ab5b390e92b68e5ee0f41ec152	276 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 17a3f5ab5b390e92b68e5ee0f41ec152 e7a3f51fae0dd40223b61a33113e6cd52b1d6005 d68711e52f0250aa52ccb13e80a12012b058b5bbcea4ca71efedfba8f5520e5d Loading...

	#78 Eval - 333bc1492d59a3491ed8032a994938db	134 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:25 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 333bc1492d59a3491ed8032a994938db dd43a8ea8c176e7b293401c739d71e64338e1f7b 49a88e34721f755a388b3eac2d141934d4e528610af1d83a3a28cf8d2356b4b1 Loading...

	#79 Eval - 8dce584d7dac1c3e80aa98744ddc3884	53 kB	2024-05-07	2024-05-07
Pretty Observations First Seen2024-05-07 21:34:48 Last Seen2024-05-07 21:34:48 Times Seen1 Hash 8dce584d7dac1c3e80aa98744ddc3884 5b6892fdcab1ad3402c7d551bf5d7f0b3a917ad1 ecb15ed4bc6469fec262279bd325866c03e65bc05d71ab1bdb46bd10dd38f08b Loading...

	#80 Eval - 8a6a48665b6fbf58e497ef641c20c3c5	26 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 8a6a48665b6fbf58e497ef641c20c3c5 316bceb1a8285be7df2200d4225a3f1568144f91 acb99a1c346da2b13bd3ff853280a3e1235fa8f5b0c4bc0859cdaa5379b5ea57 Loading...

	#81 Eval - ef83b40acf144df7015f772a90a52c40	180 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:19 Times Seen110 Hash ef83b40acf144df7015f772a90a52c40 e7a750f3359b883fc066867aa7e0f960d534e16a 01a79b62b51ec89fc2edf0f93ed450614a9090a214b088465d21f7350278c922 Loading...

	#82 Eval - e9718059179416581e9ffa8e2fce73c4	26 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash e9718059179416581e9ffa8e2fce73c4 bfee8db1a5891a2ae17f96248679e40cb386b782 ff36bac7f4035a532a0513d729b42c91d0ed4afc3caae80c7d6f0bba7eb258be Loading...

	#83 Eval - b8be7d0f89df2167a8bba590cd14da1f	82 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:29 Last Seen2024-05-16 08:33:19 Times Seen110 Hash b8be7d0f89df2167a8bba590cd14da1f a1909b6746e25b245c3fda8fd5e34f0034a1c38d 1e2c4455418248c3a6298111bb9e798448e0462d3e300bfbdae076e2c20bd9a3 Loading...

	#84 Eval - 409cc9431ba51749954d05cdbb29ba50	1.0 kB	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen109 Hash 409cc9431ba51749954d05cdbb29ba50 4a44636e0833c85bab6eee18fb5d074957d68ba5 8270b67d56266750568c7e8aceedd6f875311c0af63a4604a52d10df09661486 Loading...

	#85 Eval - 603358d4cd1546069823468a7fcd872b	431 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 603358d4cd1546069823468a7fcd872b 1f511ba75d6c7ba527d5219ff9e5ecec808c7d6b f85ce5805cb69f60a019a63aa695a8b4ee3d8bebe555c0778afd30b88a98795a Loading...

	#86 Eval - c34649ab85b78388078ed2cc780d392b	76 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:25 Last Seen2024-05-16 08:33:19 Times Seen110 Hash c34649ab85b78388078ed2cc780d392b 798b73b1dab290c883e8e179597931852772b680 39f62c7e1c72e7d59b6fe973b735b23db65409cbaa218f77e172595648745031 Loading...

	#87 Eval - 0a0730e10e47b9915d205cca527be4de	74 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 0a0730e10e47b9915d205cca527be4de 31ca4347f387639350ba1ee29bea619d6686bb91 e78b87b6782dc96c677569c548656cb3e1e6799fcd68b381f6baa9acdcceda7b Loading...

	#88 Eval - 2540d8a03378350e7907fd71021be77f	263 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 2540d8a03378350e7907fd71021be77f f6bc8101d12022929b129db52650f84ee5faeb72 a6e78526eb7ebfe1bb3007fc0b98cd63690a82975ad19b86ddb94a39d1ef76e0 Loading...

	#89 Eval - 54b5571bdb4fa253c98383405c819e9c	22 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 54b5571bdb4fa253c98383405c819e9c b7e2d7fad57a243b9eb5636b64a808c332d17152 58c9eeaca74298e5363f6b5871dafd979e9c6d30dbf490943397474653aae993 Loading...

	#90 Eval - 9490ac3bf28447bdf1b6e4038c2be197	147 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 9490ac3bf28447bdf1b6e4038c2be197 07e361eed6be2aa9509c40eb00cc9bafae908d8e f1c4d6093c143b5e256a3a7fc424639de849509b9ab2e121209cd40e19f8ca14 Loading...

	#91 Eval - 61e9c06ea9a85a5088a499df6458d276	1 B	2023-03-07	2024-05-16
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-16 08:33:20 Times Seen6847 Hash 61e9c06ea9a85a5088a499df6458d276 e2415cb7f63df0c9de23362326ad3c37a9adfc96 fcb5f40df9be6bae66c1d77a6c15968866a9e6cbd7314ca432b019d17392f6f4 Loading...

	#92 Eval - d9f4d344d7545de43bb2299f0502e33a	2 B	2023-06-19	2024-05-16
Pretty Observations First Seen2023-06-19 21:07:17 Last Seen2024-05-16 08:33:19 Times Seen112 Hash d9f4d344d7545de43bb2299f0502e33a e06a991b5a4ba4b177375ba19b4c68e0dbfe516b ccfd37a495c32075a06647dadc9bd4da6a5b16349f6e627b027fd982b87268af Loading...

	#93 Eval - 8db73cafcfb299b2abdebd5a18894774	514 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:25 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 8db73cafcfb299b2abdebd5a18894774 b31193259a7bc76f7af8b7cda471703c0badee2a 3c489ba5a0c0a006ff01d811e946cc865df53aee8be9d9bc82e67becf5b9c711 Loading...

	#94 Eval - 335e47e73263f7b029c29383e545b41b	322 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 335e47e73263f7b029c29383e545b41b 90add439c34b29c865cf7444f64452e8bf068dbc 745843d99991d9a62823d5265c2e26bd7bc701019a23fcf22cc6740136f979c1 Loading...

	#95 Eval - 9be5f6606c8a463a15615ba27d6086c3	63 B	2023-03-13	2024-05-19
Pretty Observations First Seen2023-03-13 02:11:11 Last Seen2024-05-19 16:10:02 Times Seen40184 Hash 9be5f6606c8a463a15615ba27d6086c3 86a2fe727ef0ec4e23f1be261de127f0713e3f32 57e4541e6b4799c76812f6de6ff4aa7605c94d3cc7aebb5e8770c57efa4d28f0 Loading...

	#96 Eval - 37a6259cc0c1dae299a7866489dff0bd	4 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-19 16:10:02 Times Seen52081 Hash 37a6259cc0c1dae299a7866489dff0bd 2be88ca4242c76e8253ac62474851065032d6833 74234e98afe7498fb5daf1f36ac2d78acc339464f950703b8c019892f982b90b Loading...

	#97 Eval - d8f4ce2e80651ddae1c392d9a329c2f9	96 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:20 Times Seen110 Hash d8f4ce2e80651ddae1c392d9a329c2f9 576a36a79b113eaf0ca72c991f521c86a16c497a 2c39bdde2f3e4d9d38dc333439df5d560b3d86bee7b3326f19168eb251537b26 Loading...

	#98 Eval - 8d9c307cb7f3c4a32822a51922d1ceaa	1 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-19 16:04:16 Times Seen8407 Hash 8d9c307cb7f3c4a32822a51922d1ceaa b51a60734da64be0e618bacbea2865a8a7dcd669 8ce86a6ae65d3692e7305e2c58ac62eebd97d3d943e093f577da25c36988246b Loading...

	#99 Eval - 1a35ea21ed321ddf6c9bdb72bcc51f5b	34 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 13:36:18 Last Seen2024-05-16 08:22:07 Times Seen96 Hash 1a35ea21ed321ddf6c9bdb72bcc51f5b be50f066b8de12e52a6a1c935414c6e2fbe1b18e 2508d42aa8c867e13e73d61694a27ca43143b9c3040c72ea6cb281e3d37f850a Loading...

	#100 Eval - 9d0137bffa0f20d5e8e9f54f2c84cf0a	10 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-05-19 16:10:01 Times Seen34337 Hash 9d0137bffa0f20d5e8e9f54f2c84cf0a 39edf6d919f82b9692a2edfecc78427a82567c42 269d4d56785ffc82f3ed05d8ee3b84fc18d7474663ddd06c6fd285165190bb19 Loading...

	#101 Eval - 9830e1f81f623b33106acc186b93374e	2 B	2023-03-12	2024-05-16
Pretty Observations First Seen2023-03-12 15:00:45 Last Seen2024-05-16 08:33:20 Times Seen2226 Hash 9830e1f81f623b33106acc186b93374e b331fc67af2f8f62216dc7677e33fa9ad545b96d 5d58d41913d9fea4e42cecd7a5d1b692aa6d0d792977ad7c6d6bb1507e8f3dbd Loading...

	#102 Eval - 0e4bd4f4c0b95be1aefbd73584f064b0	1.2 kB	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 0e4bd4f4c0b95be1aefbd73584f064b0 61f2d46f0fa3cc435fff398f221f262ff4857ce6 4533f1be921483abdec4efc64c5f1be4d5edb4a0839d4c5468ab870c29847cc9 Loading...

	#103 Eval - 16bc2f32e55465bc70753116fce42ad8	463 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 16bc2f32e55465bc70753116fce42ad8 ba8ee38db54bb54398e2be5153a9f70c625984b5 22a6d78581d4872f41bb49c530c2fe07e7f7c51c5be002b0168c52677a2c04e2 Loading...

	#104 Eval - d3b181365f9a4b81157350ae176166d4	602 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:19 Times Seen110 Hash d3b181365f9a4b81157350ae176166d4 782320c877b774e34d43e76d0fd2d818a51cccf7 b37a1e73975f81a442f58300ffc34d36dc96b6e8b8c5c9eab6c767f692719d7f Loading...

	#105 Eval - cd1fd0e73e22f19d39445bf2c030ec90	265 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:20 Times Seen110 Hash cd1fd0e73e22f19d39445bf2c030ec90 26d2ebe1370b8cd442d9deab5c898d947cccccc3 f1fd45332604807cc454c172c315cb61dda37a874eb43cd1b9b978699182adb8 Loading...

	#106 Eval - 529d2cd920682274fce648af585d016a	2 B	2023-03-07	2024-05-16
Pretty Observations First Seen2023-03-07 12:38:48 Last Seen2024-05-16 08:33:19 Times Seen225 Hash 529d2cd920682274fce648af585d016a 512335be672a65e6a956d7f01e62b07c9221ab00 b1631acbe906c4ac23917ed3966570f7d4e1acb02dc16feccb796f242c60647d Loading...

	#107 Eval - 35de1229227ebb14d2968296bf923472	78 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 35de1229227ebb14d2968296bf923472 a3e83895f4153972a197ad7e791905ccf3902015 31b4c8ac38722a8fe64ff6e5c0994b77873fab09c412120c27f1e7c8a2326ad8 Loading...

	#108 Eval - 4b43b0aee35624cd95b910189b3dc231	1 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:42:46 Last Seen2024-05-19 06:45:53 Times Seen8426 Hash 4b43b0aee35624cd95b910189b3dc231 4dc7c9ec434ed06502767136789763ec11d2c4b7 454349e422f05297191ead13e21d3db520e5abef52055e4964b82fb213f593a1 Loading...

	#109 Eval - 50933bb7bdbf42ae91fde33cac2ff207	59 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 50933bb7bdbf42ae91fde33cac2ff207 bbe070add910cacb7caeb50e67e6652a723e97bd 1347d6bed2a611d9fcea9950ad64372c663f214336a4ca9a5be2ce9e3d381d12 Loading...

	#110 Eval - a18772ddac6c89dfab5385eef33497d5	118 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:20 Times Seen110 Hash a18772ddac6c89dfab5385eef33497d5 d90e93c223f9cdcf887a94604b12ffd8eb7a09a5 15defcc881266f8e8c66f588b86f7407701afa84f6bf509a4c5a832c35a0a624 Loading...

	#111 Eval - 404ed4160ed4197bd8f6045a0084daca	22 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 404ed4160ed4197bd8f6045a0084daca 20bf6dece989e4f8cbe249c3d23021b43ffcf685 2b3ff319e3bc56cb2f09ce8548fb37fcfdad1809320c3bc2b303bb3cd2c7ed43 Loading...

	#112 Eval - f0e976b756b6afe7f40bca206a2d7150	29 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-19 16:10:02 Times Seen35316 Hash f0e976b756b6afe7f40bca206a2d7150 db9bee9a7bba93a60330ec5ef1334d9c164fcd56 029b84af88c5d6ced58173997a15fa47011e198e5449027d87e2f7b871f332c2 Loading...

	#113 Eval - 50390e75aac138ff69bd26a338e042a4	2 B	2023-03-13	2024-05-17
Pretty Observations First Seen2023-03-13 21:13:39 Last Seen2024-05-17 09:41:53 Times Seen740 Hash 50390e75aac138ff69bd26a338e042a4 684bd5971f9146aedb1fef65c5c39893b3e35f7c 4a0bed9babebe4eb417d611ababf6cb6c699026486d64f6d48849557fdae5b82 Loading...

	#114 Eval - fe42df4db74e3b16e2db8e4d4df75c02	22 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:26 Last Seen2024-05-16 08:33:19 Times Seen110 Hash fe42df4db74e3b16e2db8e4d4df75c02 ca4e972a3af8813aa70910c10525ae6cbf4b8b25 b5f0b31bc4effeed42dbe3eeaba463f71fc7ab8a32502b80f383a996d737fc42 Loading...

	#115 Eval - 24cc3dc813f384fde380df619f1525cb	19 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:02:05 Last Seen2024-05-19 16:10:02 Times Seen50183 Hash 24cc3dc813f384fde380df619f1525cb 56399e3ce57ff98d68c7de98a563e572230dff6b 5421715bbdaf2550e31d10fc28d444310a8fe7147bbddecf0abb490358a1553b Loading...

	#116 Eval - 4c62bc4fd3c4e105cb3fb62fb748d59c	203 B	2023-06-16	2024-05-19
Pretty Observations First Seen2023-06-16 07:31:00 Last Seen2024-05-19 16:10:02 Times Seen23332 Hash 4c62bc4fd3c4e105cb3fb62fb748d59c f6e2d1e74e35ec4c4740ba02e890b98bda11417f 9f4a6a370cd350425d8ac08047e7646116468672e99765ca198e6d463ee5286d Loading...

	#117 Eval - 70c5007d4aaa141434ddfa124808c87d	78 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:28 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 70c5007d4aaa141434ddfa124808c87d 04cac997845cdf28a3cee236405de78ed8750754 9246bfebdcd69884df237c0ebb2597f00119059982e0bd1d1cb37acddd8f3307 Loading...

	#118 Eval - 80b4078a3775e2c9abc666790ed302fb	211 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:20 Times Seen110 Hash 80b4078a3775e2c9abc666790ed302fb 151784214a2eeb4674a21be7f408c98dffbe32b6 f4b60d53f9cb8dc9a13abf66e94ffb123c5c74e2371e249726a4000f6c485b42 Loading...

	#119 Eval - f09564c9ca56850d4cd6b3319e541aee	1 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:15:12 Last Seen2024-05-19 08:11:44 Times Seen9738 Hash f09564c9ca56850d4cd6b3319e541aee c3156e00d3c2588c639e0d3cf6821258b05761c7 4ae81572f06e1b88fd5ced7a1a000945432e83e1551e6f721ee9c00b8cc33260 Loading...

	#120 Eval - bfd741b4a5bf0beb174e366f0ce70c19	22 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:25 Last Seen2024-05-16 08:33:19 Times Seen110 Hash bfd741b4a5bf0beb174e366f0ce70c19 0d49c193d4243f16d49f18171d88a4d264f06979 2d1a405be1014f55afad471738f6beee7a72064b6a47041ac605c9ac5d56b0d7 Loading...

	#121 Eval - 85785243a6d27674f510c2cb29d38765	66 B	2024-05-07	2024-05-16
Pretty Observations First Seen2024-05-07 10:03:27 Last Seen2024-05-16 08:33:19 Times Seen110 Hash 85785243a6d27674f510c2cb29d38765 0c543ee18151c98815dd65fb2be709804375e420 44565b68da3616835f8f8792daf6345c527125dcd6674a0fab9ad9afe0a4552d Loading...

HTTP Transactions (93)

URL IP Response Size

launcherleaks.net/uploads/monthly_2024_04/cq9aTZx.png.c8fa2de155b3501a586e838cc5e8168d.png

104.21.10.110

200 OK

6.6 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_04/cq9aTZx.png.c8fa2de155b3501a586e838cc5e8168d.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 214 x 200, 8-bit/color RGBA, non-interlaced
Size
6.6 kB (6596 bytes)
Hash
2fc19a8bacd5d0e4d73a306fab8166e0
0f2fce7d0bf503da891f81231fd00aebe7a1d970
49b78f2f11c1bac3763b0131923b05101f20693a46765374d1b193ef86132b25

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_04/cq9aTZx.png.c8fa2de155b3501a586e838cc5e8168d.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: image/png
content-length: 6596
last-modified: Thu, 11 Apr 2024 12:53:45 GMT
etag: "6617dd59-19c4"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6111
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D3zQGcL0fS6XQPHONCF1SBVq%2BwpP%2Fl2axbUPcDC144WIa%2F7a29BUjn9aZHv3q%2BP0h0g8TF%2FA9ROB5WSxBhX0j51RNqeebT8stpcJBMWvdB2I1zilFFy7WQcFrRAxk9EE0RVUew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554f9750b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_04/whats_good.png.7a69ecec6247d8d13d02c05581db0b6b.png

104.21.10.110

200 OK

551 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_04/whats_good.png.7a69ecec6247d8d13d02c05581db0b6b.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 1920 x 1080, 8-bit/color RGBA, non-interlaced
Size
551 kB (551370 bytes)
Hash
bd6e64a379de435c2abc2d7946bbfad1
4b24ed6d44f368df35c1d5829579346ae242a770
150df326b0b235af1a0a736475a8809ec47d7a04165180f30519e9ffa2e295e5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_04/whats_good.png.7a69ecec6247d8d13d02c05581db0b6b.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: image/png
content-length: 551370
last-modified: Thu, 11 Apr 2024 06:32:35 GMT
etag: "66178403-869ca"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3hOONUk3hU%2BHOSs%2FkuqqhIRKxnyu9sBcFX1ewJLpHaP88g48n1wAevUkbWb%2FHd2dXscjBWxP6%2F53S%2Bu2zxV8DsAWpiTnn%2B9jh0eKd6%2BoTW1RN8%2FrcZl95KxlYPP79slwSO3y8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555097b0b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_04/adad.png.e52979bb8e22af2923bdefb76ba81178.png

104.21.10.110

200 OK

295 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_04/adad.png.e52979bb8e22af2923bdefb76ba81178.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 1920 x 1080, 8-bit/color RGB, non-interlaced
Size
295 kB (295333 bytes)
Hash
18ef5cd95531bb3dd64d9e06e29e8626
5b94f1bdfa2b1f235349d37ff7cb386671cb8a83
0b827376ee9a9be1006489f2900bf7f67edab2f0e2ea939a8bf5615af9620c33

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_04/adad.png.e52979bb8e22af2923bdefb76ba81178.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: image/png
content-length: 295333
last-modified: Thu, 11 Apr 2024 06:34:25 GMT
etag: "66178471-481a5"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M8%2B9zGjW3bhYaRF%2Bg09qeV7UUp2nMXssR0cLp6DCnJu9fcqXqv2Ijd7G3LH6pn1jQfnRXu0Jh0%2FynAdjHhw05%2BbdhvrQ3jYUx8klDSLd5eITnCpMJESwD6O%2B9ExACbT8U2uWFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555097d0b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/applications/core/interface/js/spacer.png

104.21.10.110

200 OK

137 B

URL GET HTTP/3
launcherleaks.net/applications/core/interface/js/spacer.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 1 x 1, 8-bit colormap, non-interlaced
Size
137 B (137 bytes)
Hash
a41d6e3396dc05c78cc77b2d2466534d
0ed5c70f6c2012837adc192b1570cdc8551defbe
dc1b146a3d93548cfd8893783085c4d22a389d361f6b0816643b67f19233000d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /applications/core/interface/js/spacer.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: image/png
content-length: 137
last-modified: Thu, 04 Apr 2024 02:57:28 GMT
etag: "660e1718-89"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6101
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IIq2bVMcfFutKQbnDDIaPV7MxkbOlZUtV8NB19u%2FdTJ0%2FOZwlPd%2BIMQ0CjbX8ar2iKw%2B%2FKDqORLsQ90FoqGriXPzLsomuRynj5Xy5TpaSy5sm0XJkQQdry3F1vOk72DcnjSV3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555198c0b65-OSL
alt-svc: h3=":443"; ma=86400

cdn.jsdelivr.net/npm/sweetalert2@11

151.101.129.229

200 OK

21 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/sweetalert2@11
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (52172)
Size
21 kB (21319 bytes)
Hash
230c939d3b3fc96a5cf7fec7d22891c0
5c664950c68e5630583db458390152ad0e1c64d9
ef7aceda0ec9484ac6f22b195c2b1edfd29fe721ae78f823cafa2dffc71108d4

HTTP Headers

GET /npm/sweetalert2@11 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 11.10.8
x-jsd-version-type: version
etag: W/"129b5-XGZJUMaOVjBYPbRYOQFSrQ4cZNk"
content-encoding: br
accept-ranges: bytes
date: Tue, 07 May 2024 19:34:09 GMT
age: 14898
x-served-by: cache-fra-eddf8230029-FRA, cache-hel1410033-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 21319
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.5.1.min.js

151.101.194.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.5.1.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (30879 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d84"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 May 2024 19:34:09 GMT
age: 966621
x-served-by: cache-lga21981-LGA, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 64, 23364
x-timer: S1715110450.666848,VS0,VE0
vary: Accept-Encoding
content-length: 30879
X-Firefox-Spdy: h2

launcherleaks.net/uploads/css_built_27/341e4a57816af3ba440d891ca87450ff_framework.css?v=f71abd72281714889716

104.21.10.110

200 OK

61 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_27/341e4a57816af3ba440d891ca87450ff_framework.css?v=f71abd72281714889716
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
61 kB (60963 bytes)
Hash
698f513215bf8bd2e500066a807a4164
a756d60e3ab741559df793e5846d4441d595b7dc
f15ad67d5fdfff0e82cec4b01a0d8831057a87ae150ffeee5f47c553cec4640d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_27/341e4a57816af3ba440d891ca87450ff_framework.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:16 GMT
etag: W/"663723f4-50ce0"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ru%2FH8IW4dWxacZFGwCOXxsQSdCM5BlDtPaZBUBTqyd3E8Sgw0IUYGWvrRc2276pqC83bo3C9VxME6C7TqrB7ZUc0JZC5EWYa4rOQeLNHQDC6hDf2r7oUYSeWeyx5MDD3nAfRgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d9120b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_27/29bd99919d9bcfd58c5a255c6957b8a6_convert.css?v=f71abd72281714889716

104.21.10.110

200 OK

1.9 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_27/29bd99919d9bcfd58c5a255c6957b8a6_convert.css?v=f71abd72281714889716
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
1.9 kB (1861 bytes)
Hash
075fcfd21ff80f72b115a2e1e8899edd
b4f52028b218747ffdc75b3af4c168627df0a02f
c07da8bc9d6cb91977e07d6a25c8eb7bd0b40ac53633a2ebde34927764988981

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_27/29bd99919d9bcfd58c5a255c6957b8a6_convert.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:18 GMT
etag: W/"663723f6-1755"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JpbnflmugliVBX8nZiYPfhql8fIHO0fyOdI1YvPUSWygqD%2FMcYx27uIpmWD5LujzoDZwaS8nztZjOAY8QK50386dlAbWaZlgzVh%2BzWOao3WBXCuaykJEzz8r%2B2UUIuf%2FqlWT8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d9230b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/applications/core/interface/font/fontawesome-webfont.woff2?v=4.7.0

104.21.10.110

200 OK

77 kB

URL GET HTTP/3
launcherleaks.net/applications/core/interface/font/fontawesome-webfont.woff2?v=4.7.0
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /applications/core/interface/font/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/octet-stream
content-length: 77160
last-modified: Thu, 04 Apr 2024 02:57:28 GMT
etag: "660e1718-12d68"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E7J1PQ9xTC9XcnxfROlN0sajt5JVBuPkvjYNiRO4UCqfKKElNjASqTVUBoOYFisfMuYOheyHo5o1LficAHy4dah9vx4mgc%2FojDKW1rxsXuDEzd34aK6D%2FouMIJr9Dp7OjSuzNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d90a0b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_04/image(19).png.2aa78230b74798e345b60e3f00462916.png.4e336bf7c14fbdc1f4db64c294c8c35e.png

104.21.10.110

200 OK

2.1 MB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_04/image(19).png.2aa78230b74798e345b60e3f00462916.png.4e336bf7c14fbdc1f4db64c294c8c35e.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 1607 x 1080, 8-bit/color RGBA, non-interlaced
Size
2.1 MB (2100356 bytes)
Hash
f8f3bbfe615b3811bc862cc33fd85dba
45c1dad753241f8ff93afb7f5215175a880624c5
2be690f365c2de1f783be2d1d635d1684d9f7ee0c20e4cfaadfb6fbd92c1a64d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_04/image(19).png.2aa78230b74798e345b60e3f00462916.png.4e336bf7c14fbdc1f4db64c294c8c35e.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: image/png
content-length: 2100356
last-modified: Thu, 11 Apr 2024 06:36:43 GMT
etag: "661784fb-200c84"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L2UOQx1SW7ousLAzgPooNLvVi7tr37kCyhwISZ5O3SVBpl412Ktj4yYLnO1QptUaYuS0ghy7EepVCbGB6wyoAr2yrHN0mKe6yWvp%2BUVNraTxiDnXkU%2F1CTCQlQRiKXmTmRjLzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555097e0b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/javascript_core/global_global_core.js?v=f71abd72281715110437

104.21.10.110

200 OK

10 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_core/global_global_core.js?v=f71abd72281715110437
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
10 kB (10168 bytes)
Hash
afa8e63edb7fc769e1284dcda0ca1cbe
19f093a9d5d5358b8349ed825d1c208aeaac8c0d
9fd0045c2f08e29a29834356311d936fb0f040d0752367a354f570964c8cf347

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_core/global_global_core.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-9734"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wzdA9%2BAvWX6Gl7oqVbm%2BxyTGmP1pxKm7vkD8TY4jQlTkvbt6p7oKLVvfdcus7jkTIxxZ%2B%2FMr%2F%2BxWDumSvt74NavJ8eS3xElHhGdEdGzgNtQn%2FMhL3qc%2BSnWXxoVgV3hzrMW86g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555199e0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/javascript_core/front_front_core.js?v=f71abd72281715110437

104.21.10.110

200 OK

9.5 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_core/front_front_core.js?v=f71abd72281715110437
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
9.5 kB (9457 bytes)
Hash
12324e04350dced0d5cff0397679675f
353ca9a18e368b377417d801b1c5abfbbae732d3
0df15524a8fded8336666a940f5dfb5cffd6932b33c8c4470a4dbac09004e2b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_core/front_front_core.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-952f"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tONaxhm9HKVtg1ak6BK47I%2Be%2FpA3PxkRZ0IuR6Oet7XSJtQaI1A%2Fpcf2QqZVQ%2BANFmQkabhhEvRev7%2BLP0RIZ3kDjji2F5vG9EolF2aLmxKtVFTNbvuNIQVM0yDRStqZu%2FV%2FgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a55519a40b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_27/05e81b71abe4f22d6eb8d1a929494829_responsive.css?v=f71abd72281714889716

104.21.10.110

200 OK

14 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_27/05e81b71abe4f22d6eb8d1a929494829_responsive.css?v=f71abd72281714889716
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
14 kB (14026 bytes)
Hash
17ed09fd2820a9d011bdd9c0492186e2
0e152b5012351ac9ae5958740601626246ec2c2e
777bdc5f6d136687662f6e48ff2411166f4a779aa14d0505073e59a2c1d215dd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_27/05e81b71abe4f22d6eb8d1a929494829_responsive.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:16 GMT
etag: W/"663723f4-8cf6"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3IIi0dN%2BWh4M0upIyKY%2FGcOu4JilkMAmse5TJz1GJBPn%2Fw7ZJPoAASYWhJbPNc8KpD49RX7dkFg6ie4cKjELXQ6x%2F4UjS0PumUYgOikKBnVaFmx4MyHwvqhBhswxpxbIOsVNSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d9170b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_27/49037c9bdbc019a877c9a3ae069caf24_v4-font-face.min.css?v=f71abd72281714889716

104.21.10.110

200 OK

8.7 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_27/49037c9bdbc019a877c9a3ae069caf24_v4-font-face.min.css?v=f71abd72281714889716
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
8.7 kB (8700 bytes)
Hash
f694b9081e00443094c358855cbfd804
1b41e2a2d378c892dc301dc4cc06978e11bb9f23
43f4809ee73c1757c9cb0e62c4c8ed8bafdbf2a3c88a34a873ab71862f2df4ba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_27/49037c9bdbc019a877c9a3ae069caf24_v4-font-face.min.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:18 GMT
etag: W/"663723f6-82e"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zxRE%2BqcKQSL182H0OREIieXZnH1pt2AzlikPI1DGi7q%2B7WhgpiMCr5rWFfr1RwlRpfg90bCkhoJ7Lw2YUrI%2FTzMI%2FdHEjkk7Jojs0gQYQzbeCmHfVAXvAyeNPOp9Cg2Q6wLCLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d93c0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/main_script.js

104.21.10.110

301 Moved Permanently

0 B

URL GET HTTP/3
launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/main_script.js
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /file/7615-white-custom-clothing-pack-rare-leak/main_script.js HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 301 Moved Permanently
date: Tue, 07 May 2024 19:34:10 GMT
content-type: ;charset=UTF-8
content-length: 0
location: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
x-ips-loggedin: 0
vary: Cookie, Accept-Encoding
x-xss-protection: 0, 1; mode=block
x-frame-options: sameorigin, SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-content-security-policy: frame-ancestors 'self'
referrer-policy: strict-origin-when-cross-origin
expires: 0
cache-control: no-cache, no-store, must-revalidate, max-age=0, s-maxage=0
strict-transport-security: max-age=15768000; includeSubDomains;
x-content-type-options: nosniff
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WpbxRzNWoaOiio3s09ItamlhUsfG2LfuLv8VE8CKRbfiLux2t9lnpla70heXzhYfBPtaqlIyuB1YGOD8Oj1Iv3TszFQFVbPSUbkR44P0TCloRjlDU5ihPFYKs0o3OvoZwIFLvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a554f9770b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_27/223ae211f0236ea36ac9f7bf920a797a_all.min.css?v=f71abd72281714889716

104.21.10.110

200 OK

29 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_27/223ae211f0236ea36ac9f7bf920a797a_all.min.css?v=f71abd72281714889716
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
29 kB (28781 bytes)
Hash
d3e785fbdba39827de5e5233e39166a3
8edc6ebe20e6d614fec478085c71471ad5765342
d5244075a300e6b997fb9a1c0a76902b246f97b411d038ae73b65a66d539b345

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_27/223ae211f0236ea36ac9f7bf920a797a_all.min.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:18 GMT
etag: W/"663723f6-19724"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L12hXx%2FR8fububivkjmsoRx%2BWwRAq3ugd44DnbebljQa89B306aFXIYrRQC2Z%2FFyL%2FP%2FXgEdzT2ejWJKzQfQ1Kt1a8H%2B5gl3zu6Dg%2BueSl%2BnVlPZI%2B0RlC1ZiN8yDdgmdTy3FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d91d0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

use.fontawesome.com/releases/v6.4.2/webfonts/fa-brands-400.woff2

104.21.27.152

200 OK

110 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/webfonts/fa-brands-400.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 109808, version 772.1280
Size
110 kB (109808 bytes)
Hash
005c9aa92b564b73b7582cc4f1fa49cb
373361ed756b1fe68ce2f5968d467826b6973bb5
faae6fc0aa94cc5bde5076647c817a23206096a1cbeda10d1c6f3d89d6163ed1

HTTP Headers

GET /releases/v6.4.2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: font/woff2
content-length: 109808
access-control-allow-origin: *
etag: "005c9aa92b564b73b7582cc4f1fa49cb"
last-modified: Fri, 22 Sep 2023 01:46:37 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 601661
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Jd2oBZqm%2FQlnX3D%2FLvLguJ9WhTQ%2BX93ismNR5HKprcvZG1kIC9SBg%2BI3LmKEXFwS1no7fD8so535pO07m9kdcmpp68EwcZbPGH0gkQ4p59lebBkcByNCfLEktefhlpUtMqaPm5C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a559ffd75688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v6.4.2/webfonts/fa-solid-900.woff2

104.21.27.152

200 OK

150 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/webfonts/fa-solid-900.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 150020, version 772.1280
Size
150 kB (150020 bytes)
Hash
d5e647388e2415268b700d3df2e30a0d
97f0942c6627ddd89fb62170e5cac9a2cbd6c98c
886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9

HTTP Headers

GET /releases/v6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: font/woff2
content-length: 150020
access-control-allow-origin: *
etag: "d5e647388e2415268b700d3df2e30a0d"
last-modified: Fri, 22 Sep 2023 01:46:37 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 611638
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bRXg7Djj0z83GnLb0rg4X5cwNM8hdi81zfVSI1PFw1c2gCzyczxHzRrdwOr7N83CsZ9Eycupj5vvz39amv%2Fqk2tQxQ3SkWglRI0os3oCE5I7w3YJnSlzB7dTFKAOhC83UQ1S1FhS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a55a0feb5688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v6.4.2/webfonts/fa-solid-900.woff2

104.21.27.152

200 OK

150 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/webfonts/fa-solid-900.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 150020, version 772.1280
Size
150 kB (150020 bytes)
Hash
d5e647388e2415268b700d3df2e30a0d
97f0942c6627ddd89fb62170e5cac9a2cbd6c98c
886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9

HTTP Headers

GET /releases/v6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: font/woff2
content-length: 150020
access-control-allow-origin: *
etag: "d5e647388e2415268b700d3df2e30a0d"
last-modified: Fri, 22 Sep 2023 01:46:37 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 611638
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HnkpmpxMJbnRDupLZwL7pKWl2vNQbtnByWqqnjDq2FVKomCpqp1sfm0k%2ByAF6%2BxMzaw1cFUtY4dp5TwAHDYjNlGynTybH81Gg2iNM2X0BxwRmwegWnYBBDRSw%2FTmcGvpFBpx1mp8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a55a88d75688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 117593
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 117593
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 117593
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 117593
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v6.4.2/webfonts/fa-regular-400.woff2

104.21.27.152

200 OK

24 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/webfonts/fa-regular-400.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 24488, version 772.1280
Size
24 kB (24488 bytes)
Hash
747442fa76f1d9a31f9a54a2e8a4b448
07fc0ae14bb3187839082aed3bca11dfb1e04524
9169d8be7a8177e5a92a4d04b6de7f6504b938573bf4da5889871c4f376d3849

HTTP Headers

GET /releases/v6.4.2/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: font/woff2
content-length: 24488
access-control-allow-origin: *
etag: "747442fa76f1d9a31f9a54a2e8a4b448"
last-modified: Fri, 22 Sep 2023 01:46:36 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 611639
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3zHURDcG9CMcCVgSTPbMXlpIo367DEErnWBdtvVB8loih5OQweZovjp04lcxnQeCV4WOsgAEOZSK1Tun%2FlqxxQxAgpi4JsMR5xRkDtO49OVBQ3uO0%2BMjohe2Rm0%2BUM7u2yvGZh%2BD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a55f4b8c5688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

launcherleaks.net/uploads/css_built_27/63225940445060c5a9f21d31e95bf58e_downloads.css?v=f71abd72281714889716

104.21.10.110

200 OK

1.4 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_27/63225940445060c5a9f21d31e95bf58e_downloads.css?v=f71abd72281714889716
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
1.4 kB (1405 bytes)
Hash
7ea1af041d5c6347fe40672d787d687a
c519faf6e9952ca0279e4dd4e67a776ec8260742
6bc6b9fd365df6a6df54f83d0f8cebb7ea84db212caa1e5fb6e48d9ab822614f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_27/63225940445060c5a9f21d31e95bf58e_downloads.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:16 GMT
etag: W/"663723f4-adc"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5239
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XJknKkfpHoploy45mFiTgY0w1yTVMJV1jK1zUlPnk3ST8wZgiA97PuGn3O%2FQp0qXBbrNUroPxEX0Ei7VHuCbb0jbN3ECXwPiSvDl2BNudkMko%2BKQ6wVm2ZEtgwLGKFk4h0B8tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554e9480b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_04/c43988fd6b9324259e0d8dbbb24662a9.thumb.png.6f07f3cdc25a0a6b2601ccfd74a33394.png

104.21.10.110

200 OK

134 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_04/c43988fd6b9324259e0d8dbbb24662a9.thumb.png.6f07f3cdc25a0a6b2601ccfd74a33394.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 500 x 416, 8-bit/color RGBA, non-interlaced
Size
134 kB (134233 bytes)
Hash
cd76063eebffdad4e5d7e9f9842375ab
f7d4fd9e275395f711326e0afca7ba730fb849d2
4d8369589181951a20033fc2ae1eb77f477890ad8e729ee29def35fef32f7dfa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_04/c43988fd6b9324259e0d8dbbb24662a9.thumb.png.6f07f3cdc25a0a6b2601ccfd74a33394.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 134233
last-modified: Mon, 29 Apr 2024 20:45:42 GMT
etag: "663006f6-20c59"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wyx4TM9Si6%2Fg21J8zzNUWG6uWJ0Bwdn9C1RyGmbYQha2B0Nvgt4B3%2Fij4HKhWYTnHJ1sNIHnuw09VVq1lV4vwZ138fPkLYpVoxhyhH%2F%2F99Hv6mCJkDIWrHaiZFtNyhRIxMod9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a560985d0b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2023_06/Screenshot2023-06-24231322.thumb.png.e46eca2b5a1540d9e47d4ac06f38b4ef.png

104.21.10.110

200 OK

174 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2023_06/Screenshot2023-06-24231322.thumb.png.e46eca2b5a1540d9e47d4ac06f38b4ef.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 500 x 430, 8-bit/color RGBA, non-interlaced
Size
174 kB (173939 bytes)
Hash
87dada0953eb59beaa79c774c06e08c6
bb81f511a6ceaa260bf36ae388e72e06c06239ba
3b04624e966826cb8fbb98f294b86d0c9cbcbf449d263b5815b5b4288b087420

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2023_06/Screenshot2023-06-24231322.thumb.png.e46eca2b5a1540d9e47d4ac06f38b4ef.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 173939
last-modified: Mon, 05 Feb 2024 06:15:31 GMT
etag: "65c07d03-2a773"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jWvzVHfp4%2FFFmSA0Zx%2BIqSfM8AM8syxUfHCy%2BvbwvXUNdxl4N1rL49uvnUwJut1i7Y9aIuiDG6G0i4r9CerzEOvuf3F5Q029nRm13Y3%2FXw3C9lu%2F%2FHKVm1vO1J6AihGLWC4%2FIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a560986d0b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2023_07/GABZ.thumb.png.01040cd3d4e5949cbb6c11a35aef72ba.png

104.21.10.110

200 OK

111 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2023_07/GABZ.thumb.png.01040cd3d4e5949cbb6c11a35aef72ba.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 500 x 244, 8-bit/color RGBA, non-interlaced
Size
111 kB (111050 bytes)
Hash
0a353c2beadfe58fbca87e98d9440755
0f9a01cac0ff93981d44b1ce212688fd58bcbd8c
29156be7b5e145a22ca03e8fec0cc2ba5270ac8d7452b4e4482eb2e0740b5f2b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2023_07/GABZ.thumb.png.01040cd3d4e5949cbb6c11a35aef72ba.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 111050
last-modified: Mon, 05 Feb 2024 07:07:54 GMT
etag: "65c0894a-1b1ca"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3727
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gw5Z%2Bkmwl3oAYawWNWexJkuiS%2FVRompr7inRv%2FXf%2F24oyK%2FJBelFlGdAxDQeMRxWU%2FBwTOANkUwONAjkVQAdH5ni7sBfrnU%2BGiOVoDCUqhRvRpNW6XmXBUxIkkKOui%2F5qQHZqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a560a87d0b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_05/Desktop_Screenshot_2023_11.09_-_20_05_56_61.thumb.png.137bae1e69f392a401f2b72204d30ef1.png

104.21.10.110

200 OK

172 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_05/Desktop_Screenshot_2023_11.09_-_20_05_56_61.thumb.png.137bae1e69f392a401f2b72204d30ef1.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 500 x 282, 8-bit/color RGBA, non-interlaced
Size
172 kB (172311 bytes)
Hash
f1afed96017903c38e0c7d626ebb97e8
5c484b964246cc8694290da55640c5e4db8d8d3b
0c83a790c6a275887b5edb9e2de7c9f0232bace471eecac419b72f80b62d2765

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_05/Desktop_Screenshot_2023_11.09_-_20_05_56_61.thumb.png.137bae1e69f392a401f2b72204d30ef1.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 172311
last-modified: Sun, 05 May 2024 12:28:23 GMT
etag: "66377b67-2a117"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2201
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jpWxop8GRu9toV9OYoaWD6h316oCtkn2kVVOdP5ZIR9mP3%2BksDRRnsE5%2BlWH1VPLsy5qfmmj93bPDOkD6iMI%2Fx0vFWBviCbLYcseKDmEkSevjapm9TconEt9uo6hLmKTsWPl4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a560e8cf0b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/javascript_global/root_library.js?v=f71abd72281715110437

104.21.10.110

200 OK

421 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_global/root_library.js?v=f71abd72281715110437
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
421 kB (421076 bytes)
Hash
cc510b9e754130a325d7672c1c60a1d0
17ba949413093caf7a2e4faa57a371224121926b
1b1be6ad01824f75c7c8960095ffb887560cb54edb798adda57098a70ec2cb26

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_global/root_library.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-567ce"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ylh7%2FjGM2vMr2xUT%2FzwdNsw3uchg7sJkYod1COyZJOvDEzU9I9FR1VUj9fJozAdnTwBmr6WyOzXqwyDWOU20Qm2oveFbRTRalUQqm54rNjeeyKJh0qjyq2VM3PA3RMDjiDY2gA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555198e0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

use.fontawesome.com/releases/v6.4.2/css/v4-shims.css

104.21.27.152

200 OK

162 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/css/v4-shims.css
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (27374)
Size
162 kB (161568 bytes)
Hash
665de85010641f678f0178a9d330a7af
bf1ec2791cd06922f4a1b67480f75209d85e6deb
0e0a27c105caf20bd4cc76fe58f222d856ab8f626447846842dddca8ce7509ef

HTTP Headers

GET /releases/v6.4.2/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
etag: W/"665de85010641f678f0178a9d330a7af"
last-modified: Fri, 22 Sep 2023 01:46:32 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 616567
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LViywtIkFy5IlzMAz3iBqSzdzIxk7vcW7VVdB8VAYpwpKT5MU%2BIMXdQzPREFLy%2FEdxYWMz9cVp8rISDxmkl1%2B%2BLkp5iZwMDC5I%2BNGpdPb5C12GiFiP1GJxmyiSJGDik9OwszKIqn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a557fbed5688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

i.imgur.com/G9K4tiK.jpeg

151.101.236.193

200 OK

1.5 MB

URL GET HTTP/2
i.imgur.com/G9K4tiK.jpeg
IP
151.101.236.193:443
ASN
#54113 FASTLY

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerSectigo Limited
Subject*.imgur.com
Fingerprint39:5B:E1:0D:4A:FC:A4:C7:F3:71:DE:C4:5C:12:69:F9:5F:58:9F:42
ValidityThu, 15 Feb 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 5120x2160, components 3
Size
1.5 MB (1538268 bytes)
Hash
802b9c8b0ffb98bc3e0581d5d82cd10e
a71d3b1ce13cfa3fd68909e0ced09310dde3721d
9095029baa33ade2b062e31d9f9acf7ab15cc3229d8566304a2b9ebeb0f9269a

HTTP Headers

GET /G9K4tiK.jpeg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Fri, 03 May 2024 17:39:51 GMT
etag: "802b9c8b0ffb98bc3e0581d5d82cd10e"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: JFK52-P4
x-amz-cf-id: Ca1MeoQ412LDupaS_om-dLT5rLuDQZ1aOQBeIzhu6Cb8AL8w2jUmtg==
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 352459
date: Tue, 07 May 2024 19:34:11 GMT
x-served-by: cache-iad-kjyo7100048-IAD, cache-osl6521-OSL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 43, 0
x-timer: S1715110451.392153,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 1538268
X-Firefox-Spdy: h2

launcherleaks.net/uploads/monthly_2022_01/63024853_maxresdefault(7).thumb.jpg.7e9e3d00918758b08374931a8c9a123d.jpg

104.21.10.110

200 OK

45 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2022_01/63024853_maxresdefault(7).thumb.jpg.7e9e3d00918758b08374931a8c9a123d.jpg
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 500x282, components 3
Size
45 kB (44823 bytes)
Hash
bbe0ab7d965c381cbd07e190fc11edde
f75d098033aaeaac06da7bbff82d35f8a1358ef1
7888d217792f159b086f459180d7156e3e038f4300f11819896f4116f11f8e5e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2022_01/63024853_maxresdefault(7).thumb.jpg.7e9e3d00918758b08374931a8c9a123d.jpg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/jpeg
content-length: 44823
last-modified: Mon, 05 Feb 2024 06:10:50 GMT
etag: "65c07bea-af17"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5240
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6B7SA2r%2BTjZBnGDW62ejExhpXiZ2VH9JRRlI5p%2Bvs9msWIQq4Y%2BTloxlO58H7F8enVEwyV%2FU4Vo%2FZqFWGOKC8YJLHeKqod3DzFONS9PxkLzvgq2QcSwVXJHrmkhdVG%2F%2BDdY9Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56189820b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_04/GTA5_2024-03-05_16-50-53.thumb.png.4a46a79390de4789bbe47f99a5060a55.png

104.21.10.110

200 OK

262 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_04/GTA5_2024-03-05_16-50-53.thumb.png.4a46a79390de4789bbe47f99a5060a55.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 500 x 282, 8-bit/color RGBA, non-interlaced
Size
262 kB (262399 bytes)
Hash
1643bc44ff885f59509b80d480e1a22f
1cfef5386597cffd88dfae3c8f498eb4bac1c4f7
0c23461fa3052f24516a166dc5781412d793759aaaf27fd9b258acb8956e4115

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_04/GTA5_2024-03-05_16-50-53.thumb.png.4a46a79390de4789bbe47f99a5060a55.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 262399
last-modified: Wed, 03 Apr 2024 03:05:36 GMT
etag: "660cc780-400ff"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DbSsaZDLDPmg6ew2Dqn8roidq%2Fcr5SV7%2FqoJv9vys4%2BKdwqrdseKOUcFJVGmdChZ2iuGyQ96VjE9HdIT5tKnNPmkcX60%2BOKaB1umQ9mBHA8BVPHWkyWbxPZE7La%2F3BUkF0aJ9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56189800b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2022_07/143702555_MaleVariant2Front.thumb.jpeg.b5982b752eea7439919b52fa2572a282.jpeg

104.21.10.110

200 OK

151 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2022_07/143702555_MaleVariant2Front.thumb.jpeg.b5982b752eea7439919b52fa2572a282.jpeg
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 500x282, components 3
Size
151 kB (150903 bytes)
Hash
bca70d083201c503e48a3a8e6bae1ce9
4b3b57ab166e81cc24e792267ce6bcf06ebcdb3c
737b339118181c22f8a500aa0eacf3599c0d8bc8c9b11b5bff7780d1cb54a508

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2022_07/143702555_MaleVariant2Front.thumb.jpeg.b5982b752eea7439919b52fa2572a282.jpeg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/jpeg
content-length: 150903
last-modified: Mon, 05 Feb 2024 05:47:16 GMT
etag: "65c07664-24d77"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3727
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UucIV0QqkvQXZnkqhR%2FNEI%2BedVWgAbeIO%2BAnhDXEF37DUIyDQivXTqhZSpBZv%2FuR9JkzH5ap9Zn%2Bf2UyifFqytWDtEOdynla4JhS%2FcuaMQs7q6%2B%2B4jZrxgUGRvrXcQUKVvdujA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56189830b65-OSL
alt-svc: h3=":443"; ma=86400

use.fontawesome.com/releases/v6.4.2/webfonts/fa-brands-400.woff2

104.21.27.152

200 OK

110 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/webfonts/fa-brands-400.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 109808, version 772.1280
Size
110 kB (109808 bytes)
Hash
005c9aa92b564b73b7582cc4f1fa49cb
373361ed756b1fe68ce2f5968d467826b6973bb5
faae6fc0aa94cc5bde5076647c817a23206096a1cbeda10d1c6f3d89d6163ed1

HTTP Headers

GET /releases/v6.4.2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: font/woff2
content-length: 109808
access-control-allow-origin: *
etag: "005c9aa92b564b73b7582cc4f1fa49cb"
last-modified: Fri, 22 Sep 2023 01:46:37 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 601662
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xIV3FJrj%2FB8LEajV6%2F5AMqH5K4c8km7Xyan5eZ%2Fu6h0HRbyy6kIrocn13y7el%2F6CGXifDVFt8ZhYLTbg0QrVhDq5GSRRpSFvLqgjwOV%2BE15EnLQNz15uKWLF%2Fq9Gs3bODJXj24eP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a563dcc85688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.youtube-nocookie.com/s/player/edea0cc6/www-player.css

142.250.74.78

200 OK

48 kB

URL GET HTTP/2
www.youtube-nocookie.com/s/player/edea0cc6/www-player.css
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
48 kB (47612 bytes)
Hash
69c6c2a25cfac2a8ab7182b8a91325da
76d6c2b5a85fd1cedf7ab5022084cc982ef6f11c
e4ea3085c10ebdcee3f4b16dd370f467847e40aba7fcae77d60eed0024155864

HTTP Headers

GET /s/player/edea0cc6/www-player.css HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 47612
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 08:08:14 GMT
expires: Tue, 06 May 2025 08:08:14 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:16:13 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 127557
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

launcherleaks.net/uploads/monthly_2022_07/maxresdefault.thumb.jpg.42531b6a467eb06c2d99fb40de2e7a2b.jpg

104.21.10.110

200 OK

230 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2022_07/maxresdefault.thumb.jpg.42531b6a467eb06c2d99fb40de2e7a2b.jpg
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 500x282, components 3
Size
230 kB (229988 bytes)
Hash
9f29d7efa15fddffe81bdb3120e71e04
017da9d3a2d15be18f70d24236eabcabfb78fe50
faf62a491715142b89a693e5d081b33e9372254be674adcf7b858e189bcdc1ca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2022_07/maxresdefault.thumb.jpg.42531b6a467eb06c2d99fb40de2e7a2b.jpg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/jpeg
content-length: 229988
last-modified: Mon, 05 Feb 2024 05:47:17 GMT
etag: "65c07665-38264"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5239
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B0pLYd79iPupf%2B2LGeTo%2FTvG6IyQFHo4aIfnSlbD9paj1tHEjp9LQDrm%2FtM2ceTqDAwOcz87hpVID98M%2F5MEFcFi5mikY%2FNnx1ArNfzYxPT8GDjkNMcEoB6m5c31yehp7jj%2FRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56199880b65-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:04 GMT
expires: Sat, 03 May 2025 16:31:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 356587
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/embed.js

142.250.74.78

200 OK

20 kB

URL GET HTTP/2
www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/embed.js
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JavaScript source, ASCII text, with very long lines (3391)
Size
20 kB (19624 bytes)
Hash
ee6c1e2c91384312d0ebf1df4325861f
ee558609ed5fec4c297e71873e081471bfbdec10
113f71981587732239fcb3db6755eee7fe3006d7397bd8866d0482337b06f5ec

HTTP Headers

GET /s/player/edea0cc6/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 19624
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 08:10:07 GMT
expires: Tue, 06 May 2025 08:10:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:16:13 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 127444
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap

142.250.74.106

200 OK

3.9 MB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
3.9 MB (3946634 bytes)
Hash
a28c8d1007d491650d01c1c0761c5288
d2a1811a53341b34088d41900d4f2e71fa78741f
1fc86ad72ef67c27cb45051dc348f4fc374580120e3a704b61218ddd98507435

HTTP Headers

GET /css2?family=Inter:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 19:34:09 GMT
date: Tue, 07 May 2024 19:34:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

launcherleaks.net/uploads/monthly_2021_11/feat-P7bpT5uwtA1DIajkJRqhNXK9F.thumb.png.8c51ee5b4146aaed194fc5971b0ad1d4.png

104.21.10.110

200 OK

208 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2021_11/feat-P7bpT5uwtA1DIajkJRqhNXK9F.thumb.png.8c51ee5b4146aaed194fc5971b0ad1d4.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 500 x 282, 8-bit/color RGBA, non-interlaced
Size
208 kB (208437 bytes)
Hash
54ba4b4d294ee1f75709a00b260e85f5
ecd2056322e27097f61e0b831a70a594c6dd1b19
7202ef1fc16f209eb888bd2073532f3506ebf50e83bb18fecf48bd3ac5a72c14

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2021_11/feat-P7bpT5uwtA1DIajkJRqhNXK9F.thumb.png.8c51ee5b4146aaed194fc5971b0ad1d4.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 208437
last-modified: Mon, 05 Feb 2024 04:10:11 GMT
etag: "65c05fa3-32e35"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5239
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rhzIiaB9EJPh8C%2BSetT7u1qMUAfO%2BSXCfE1JlS47JOzfn%2FDhQlhE1tcOx2Z8yfPnE2KI%2BKDJB2lmQhnTw0OEdqpc0gnMII2QKZZXmJ%2F1lAoZaBG6F0KuCsiNpmF4Y5gxA4s2yw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56199860b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2022_09/WinRAR-logo.thumb.png.712705727354baba71b104a792cefd63.png

104.21.10.110

200 OK

231 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2022_09/WinRAR-logo.thumb.png.712705727354baba71b104a792cefd63.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 500 x 424, 8-bit/color RGBA, non-interlaced
Size
231 kB (230689 bytes)
Hash
675d24d4429664d2b8933941e2035911
5e7826a9b7777ff7240d9824dca1c4d5751e3401
bedb27d2055906aa2dd8ea6ab9260fd67d66fe589a0f86a7f598d4bed22f3494

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2022_09/WinRAR-logo.thumb.png.712705727354baba71b104a792cefd63.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 230689
last-modified: Mon, 05 Feb 2024 07:21:25 GMT
etag: "65c08c75-38521"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5239
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=orx8VvlJtDoUh43t%2BBShJhyUhr46UlPxo1jdwpUpQ6n%2B4u5AMgUrLzgIqDo3xcgkZkJthppLwPw%2BUfRrfI%2BfzVYPYCDMENxHiwrL9857HaBfPQYZsEvLujHb1jYUDx8OBx6mbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a563cbba0b65-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:50:52 GMT
expires: Fri, 02 May 2025 01:50:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 495799
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.youtube-nocookie.com/s/player/edea0cc6/www-embed-player.vflset/www-embed-player.js

142.250.74.78

200 OK

97 kB

URL GET HTTP/2
www.youtube-nocookie.com/s/player/edea0cc6/www-embed-player.vflset/www-embed-player.js
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JavaScript source, ASCII text, with very long lines (829)
Size
97 kB (97382 bytes)
Hash
313f662ec66b3cb94106e411fba15e0d
39becc293c40b248ce60fafca7413f567d34fa03
d2d3f5afdcae3fd0b7ba628ff725ffc86cb50322d0f0900158ea19e2de701d5b

HTTP Headers

GET /s/player/edea0cc6/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97382
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 08:08:14 GMT
expires: Tue, 06 May 2025 08:08:14 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:16:13 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 127557
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

launcherleaks.net/uploads/monthly_2023_03/Glock_Quad_a323ec42-66cc-45c8-ae6f-52fcd45f2f0a_1800x1800_result.thumb.png.997f58c133dcb299d8fe1b18de6b4e19.png

104.21.10.110

200 OK

168 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2023_03/Glock_Quad_a323ec42-66cc-45c8-ae6f-52fcd45f2f0a_1800x1800_result.thumb.png.997f58c133dcb299d8fe1b18de6b4e19.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 475 x 500, 8-bit/color RGBA, non-interlaced
Size
168 kB (168461 bytes)
Hash
7a5d9be31cd29be40a6c3b8430e7c444
41e3170594dd57b4d171d51742d76c55045d1006
d154114095070f4b1b5e1c9ae923b18842302262977ddcfb9db7c895564734e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2023_03/Glock_Quad_a323ec42-66cc-45c8-ae6f-52fcd45f2f0a_1800x1800_result.thumb.png.997f58c133dcb299d8fe1b18de6b4e19.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 168461
last-modified: Mon, 05 Feb 2024 05:39:34 GMT
etag: "65c07496-2920d"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uvobBM9iF1bTPhrIxwls6Q9X3jV1ql%2FSIUYZ%2F7BqtIQVT11nwWZwj5uBqnYvjW%2FASqfnZJG%2BhqJ9qDyotx%2BxRdI3aFm87uFq%2B%2Fq5xt%2BV8Ci6G5Mjs%2F6bg9GfF3HDyR78ICz9sw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a563cbbb0b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_27/5a0da001ccc2200dc5625c3f3934497d_core_responsive.css?v=f71abd72281714889716

104.21.10.110

200 OK

70 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_27/5a0da001ccc2200dc5625c3f3934497d_core_responsive.css?v=f71abd72281714889716
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
70 kB (69838 bytes)
Hash
e594c8366afdbabf8f2ad4834cf7d5b0
4aedce78e7e0ebf0baed09f97a0273f27678f0d9
2cdc4e644b53ce4caf71a18dd09c9fc377018c3af6ac14845ed40e3e4fdaeacc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_27/5a0da001ccc2200dc5625c3f3934497d_core_responsive.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:16 GMT
etag: W/"663723f4-13c8"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zwCadWbon%2BHgdl3NstczZeXPNw5CfO7IuH7BZ2k0jJeeeIi2ZdFcGQpVL7rpTAb9qtrJ2j1Z3EzmxxcHdwHfW4PLa1NkGSUiYh46y8MahYZ5JyBfa8ejLzgB0Jx4LDKnfEX0uA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d9430b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.21.10.110

302 Found

0 B

URL GET HTTP/3
launcherleaks.net/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Tue, 07 May 2024 19:34:11 GMT
content-length: 0
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dHFYXNQ2Cu8nEbqD3NNXh0Ru%2BhFy%2F95xAn%2FXgwp4c8VsxYiJtwpVfkxkjUrN8Ewp1AB3EMzbgrhSIu7KNA6dRmuIa3%2FjDPSlee70y4hRrZTBhOMm89olS9kYbs5AAoBRg%2F0s1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a5641c2e0b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2023_05/cool-profile-picture-ug9oc08q7nn527wu.thumb.jpg.9478251d87f43cb683dcd2562c4b97b5.jpg

104.21.10.110

200 OK

38 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2023_05/cool-profile-picture-ug9oc08q7nn527wu.thumb.jpg.9478251d87f43cb683dcd2562c4b97b5.jpg
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 143x143, components 3
Size
38 kB (37528 bytes)
Hash
681da64385d290aa19fc820eb98ca135
86d500cb7f0f55be8fab0c408dec7fdc5e6c6e21
d17d023b70273f7a07fe0088cdbd35f39c57695b1ee54b41871a603ce52fc693

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2023_05/cool-profile-picture-ug9oc08q7nn527wu.thumb.jpg.9478251d87f43cb683dcd2562c4b97b5.jpg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:12 GMT
content-type: image/jpeg
content-length: 37528
last-modified: Mon, 05 Feb 2024 03:46:26 GMT
etag: "65c05a12-9298"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r%2FzAbiQl0x06HEjemcM59dOM13l6iuKV7OI8PAMcnKW9TD1xKMMLNEg7XlEFg48aqzKGRad5oXYJoZCnHs1T1WsDojoEflbHT6%2FmyF6b9M1fvAsOXU5eEvqwDGAY17WrUJUbHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a5641c300b65-OSL
alt-svc: h3=":443"; ma=86400

www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/base.js

142.250.74.78

200 OK

813 kB

URL GET HTTP/2
www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/base.js
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JavaScript source, ASCII text, with very long lines (555)
Size
813 kB (812686 bytes)
Hash
24357d162136b2dde3e7ee1cd01e37a8
b6c2391bb4efb971fb9169d3ccf68330a36e255b
f6d29981d8acb8584ff00b6a55f3ee5d3f105b991b78562c4fff89c36915adc7

HTTP Headers

GET /s/player/edea0cc6/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 812686
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 08:10:07 GMT
expires: Tue, 06 May 2025 08:10:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:16:13 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 127444
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

launcherleaks.net/uploads/monthly_2022_07/4b830b-JPC2.thumb.png.c36755574da3a12a95dd13d061728c79.png

104.21.10.110

200 OK

270 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2022_07/4b830b-JPC2.thumb.png.c36755574da3a12a95dd13d061728c79.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 500 x 282, 8-bit/color RGBA, non-interlaced
Size
270 kB (270042 bytes)
Hash
a84983e7de83ac79a074337d38f30315
d073b42584d4d7605ff292de9603796654d2d3e8
3554e1bf917ec7d6cd136f8f7cca4614a0082ae9dae39045dac38f36aae93e21

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2022_07/4b830b-JPC2.thumb.png.c36755574da3a12a95dd13d061728c79.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 270042
last-modified: Mon, 05 Feb 2024 05:48:32 GMT
etag: "65c076b0-41eda"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3727
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PlCnBmA%2BCwNJCHchCdnypdnl3rU24iBqkS9iMYkXEYHTl4qZe3vczKDUe%2F71R4bOqe451TuwXcR%2BI0JyMHAN%2BlKyzTjLi%2BpSk04DtyfNoShbSNS0jv0jEGDOEljhi2nErbQ%2B2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a563cbbc0b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2023_05/maxresdefault.thumb.jpg.ceadfddf5a5c343fd0d3cdc6482a30bd.jpg

104.21.10.110

200 OK

160 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2023_05/maxresdefault.thumb.jpg.ceadfddf5a5c343fd0d3cdc6482a30bd.jpg
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 500x282, components 3
Size
160 kB (159877 bytes)
Hash
2f4c6d753ab67df81d76d0dd0df45920
3c9dba11e164c94f721fac9da4e8443ac7023529
6f23b69150efa18ed586c2742d67626834ac5ff77c281b113b0da9ba4297adbb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2023_05/maxresdefault.thumb.jpg.ceadfddf5a5c343fd0d3cdc6482a30bd.jpg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:13 GMT
content-type: image/jpeg
content-length: 159877
last-modified: Mon, 05 Feb 2024 03:44:05 GMT
etag: "65c05985-27085"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v8uwROd6H2vduaQRCgkJTyoOc9IEHVJOlDCZyATMHTrkAWkc234PytMbkHj44sDVVH8ZwuV5uwjiAiginQCy%2BJnvE8DKJGVtKkAlAnjWUDoksZEOKZusIXm7qxAkBw8ynybiJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56aabb10b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_02/android-chrome-36x36.png?v=1712605004

104.21.10.110

200 OK

1.3 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_02/android-chrome-36x36.png?v=1712605004
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1282 bytes)
Hash
6643840bd35c7cddf0811e8969b64875
886f7f812fda1694e4184083e178c8b8c6b08be3
ee3561daab5ce98f4859fc704e7584e53d0858ac073fd02569fb96b5cdc59209

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_02/android-chrome-36x36.png?v=1712605004 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:13 GMT
content-type: image/png
content-length: 1282
last-modified: Tue, 06 Feb 2024 04:19:31 GMT
etag: "65c1b353-502"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2280
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FGsiSFSTyDJruEFdTJ4FcIkVzh1Vc9l5ihoru7kePKgIwz5EW9cO6tkUEd1uT1AQED4W484PopkIF%2Fb3E7bdKM%2Bkd4bDkO9PVCoqP1bpyJCz0geaaufEEJTb0V%2BirqXoVRnDxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56fb9510b65-OSL
alt-svc: h3=":443"; ma=86400

www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/remote.js

142.250.74.78

200 OK

34 kB

URL GET HTTP/3
www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/remote.js
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JavaScript source, ASCII text, with very long lines (543)
Size
34 kB (33657 bytes)
Hash
fc46085092eeec2598954a4493d1e8d2
568269777dce5af286e8e1498578e759552b391f
7af63a9cb99fbdb146894f4665ab18e932deff6e246e36dbc6c93d178a62b749

HTTP Headers

GET /s/player/edea0cc6/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33657
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 08:11:03 GMT
expires: Tue, 06 May 2025 08:11:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:16:13 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 127390
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

142.250.74.170

200 OK

0 B

URL OPTIONS HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 07 May 2024 19:34:14 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

launcherleaks.net/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js

104.21.10.110

200 OK

4.1 kB

URL GET HTTP/3
launcherleaks.net/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
4.1 kB (4083 bytes)
Hash
98a9fd3a0df805d3f6cc44d8ef7b0942
af46d7bce52220023548538effccc730abdadd40
350d81c3d30a4c4f2231cfe0485b5cddb9dfe5af0b5c5f8136c76981d09ad2c5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:13 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CvuZmx9%2B%2F%2F4GouD1DZ7p5k3WTJvlS9FdNv%2FzZrhNcvI1zmi2Ochv1tMJ1cLL77CunDMdcUdM%2Bpj7jX5yRAG7n2iDXotoV1K5uBpg5ks%2B8EEf5S9tluT9vpniJ6eVWmkem%2BMg%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56fb94c0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

142.250.74.170

200 OK

42 kB

URL OPTIONS HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JSON text data
Size
42 kB (42107 bytes)
Hash
40b540e1a790e79ed8be991f4eac554e
d18531c6127e985fc30980f65d8b4e1ac68a1dc9
705e1724f272124111833e28eeb2ab0b8eaadf814be767acc40f56ffb763006f

HTTP Headers

POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 07 May 2024 19:34:14 GMT
server: ESF
cache-control: private
content-length: 42107
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

i.ytimg.com/vi_webp/9Ylp0HIu4uM/sddefault.webp

142.250.74.86

200 OK

28 kB

URL GET HTTP/2
i.ytimg.com/vi_webp/9Ylp0HIu4uM/sddefault.webp
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintD2:2C:3D:05:38:12:27:20:C9:64:22:58:3A:99:D5:43:6E:BD:3B:D2
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp
Size
28 kB (28254 bytes)
Hash
4d638dceb31d853fa3c94dd906ae2ec1
e6ae56536e627ae6d94e6a5658e7514fc239bf42
b9c8b36e64e5a3136203aaeaebf17994fe420272adbbc1ae8631ce23e8cdf7bb

HTTP Headers

GET /vi_webp/9Ylp0HIu4uM/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 28254
date: Tue, 07 May 2024 19:34:14 GMT
expires: Tue, 07 May 2024 21:34:14 GMT
cache-control: public, max-age=7200
etag: "1673862799"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

launcherleaks.net/uploads/monthly_2024_02/android-chrome-512x512.png?v=1712605004

104.21.10.110

200 OK

49 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_02/android-chrome-512x512.png?v=1712605004
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
49 kB (49186 bytes)
Hash
390058981d8c33cf7f7ac83df7289560
853f6dd48c10c41a4dc288b8fe6d8987ae14f136
ab56bf944922cd6347a06f5de4cb913f823cd8ba96f6d1b2ce31edf10d62e789

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_02/android-chrome-512x512.png?v=1712605004 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:14 GMT
content-type: image/png
content-length: 49186
last-modified: Tue, 06 Feb 2024 04:19:31 GMT
etag: "65c1b353-c022"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y9plPnWZCPEmMo6viWmPpTw96a0W%2BRJUHvwwph0q8hsXoY00eZTj9625vkIRh5dHKGhu6PRgN5c5nkwPbZ2ERgHLg88A0BO%2FIp6g%2Fzb%2BpLpsOIueVK2VgM5bN1NP4XBSWmvzqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56fb94e0b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/cdn-cgi/challenge-platform/h/b/jsd/r/8803a54d4f2056ba

104.21.10.110

200 OK

0 B

URL POST HTTP/3
launcherleaks.net/cdn-cgi/challenge-platform/h/b/jsd/r/8803a54d4f2056ba
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/8803a54d4f2056ba HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12208
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:14 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=J7xUOE46qZkc_zoM7jahtty9znBc_Z1_..ojWizBLSk-1715110454-1.0.1.1-aKYfmrjn_O6lWYGpNbmvW6gi3XJjnM8NCFHLLYSpAQGlHXZ9ISleAIYj7tDqq._hANQ9x4937dEv1hJTTtV5Ow; path=/; expires=Wed, 07-May-25 19:34:14 GMT; domain=.launcherleaks.net; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B1KkBmEpvdX0hxsw%2BzM8z%2FQzRrXXTmkPepilothNVZm7zUhjdvRnNFJqGZn%2Fur1qwEMqBmTjJ%2B048e5ELxqQOnvR5pvAuWk9m5AbL1qY3S79DPa9jmEbzg3KLfWGdG1aDfFy0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a5726c0f0b65-OSL
alt-svc: h3=":443"; ma=86400

www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed

142.250.74.78

200 OK

38 kB

URL GET HTTP/2
www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
HTML document, ASCII text, with very long lines (58090)
Size
38 kB (37987 bytes)
Hash
aca23e827a74a22559d0c701e9657a72
fa69a2a32bb616d3062b5a797f444ff89ddd414e
b722ac4177370f4eaa0b55026e5f713a4e62a139a6cf52e56f4bf68a5aeb5149

HTTP Headers

GET /embed/9Ylp0HIu4uM?feature=oembed HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 07 May 2024 19:34:11 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="YOUTUBE_NOCOOKIE_DOMAIN"
origin-trial: AsnbWYr3bqK88n/C2BgXPMpBC+msV4jf6vsgnAir+gFnHw3zXZEKmz271E4vhxTja+7SD2q3dr2BxZlHzvj9HA0AAACBeyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUtbm9jb29raWUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-resource-policy: cross-origin
report-to: {"group":"YOUTUBE_NOCOOKIE_DOMAIN","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/YOUTUBE_NOCOOKIE_DOMAIN"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: br
server: ESF
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/js/th/OfRUkPbLLmIJHiz0sRQ6wXEqxeMXOYMNgt9OZuziQhg.js

142.250.74.132

200 OK

20 kB

URL GET HTTP/2
www.google.com/js/th/OfRUkPbLLmIJHiz0sRQ6wXEqxeMXOYMNgt9OZuziQhg.js
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT

File type
JavaScript source, ASCII text, with very long lines (51532)
Size
20 kB (20262 bytes)
Hash
04e63424458140569a22bbfa84649e42
5fc8f8462d527e0da3061e14b63b8d60dc8311aa
39f45490f6cb2e62091e2cf4b1143ac1712ac5e31739830d82df4e66ece24218

HTTP Headers

GET /js/th/OfRUkPbLLmIJHiz0sRQ6wXEqxeMXOYMNgt9OZuziQhg.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20262
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:14:51 GMT
expires: Fri, 02 May 2025 02:14:51 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Apr 2024 11:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 494363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play.google.com/log?format=json&hasfast=true&authuser=0

142.250.74.78

200 OK

0 B

URL OPTIONS HTTP/3
play.google.com/log?format=json&hasfast=true&authuser=0
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Tue, 07 May 2024 19:34:14 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT

142.250.74.170

200 OK

0 B

URL POST HTTP/3
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 07 May 2024 19:34:14 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play.google.com/log?format=json&hasfast=true&authuser=0

142.250.74.78

200 OK

0 B

URL OPTIONS HTTP/3
play.google.com/log?format=json&hasfast=true&authuser=0
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Tue, 07 May 2024 19:34:14 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT

142.250.74.170

200 OK

114 B

URL POST HTTP/3
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JSON text data
Size
114 B (114 bytes)
Hash
c274f179e08e731ec49493be824b6616
f51944d04652e9acdbe6bac083f157bc24fc75e1
eec34a31dd6dbf313200f47b464f09d8e0e684a1bf4c0a3fc6abc1d1796e6ed8

HTTP Headers

POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1332
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 07 May 2024 19:34:14 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true&authuser=0

142.250.74.78

200 OK

131 B

URL OPTIONS HTTP/3
play.google.com/log?format=json&hasfast=true&authuser=0
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 555
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 07 May 2024 19:34:14 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

play.google.com/log?format=json&hasfast=true&authuser=0

142.250.74.78

200 OK

131 B

URL OPTIONS HTTP/3
play.google.com/log?format=json&hasfast=true&authuser=0
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 413
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 07 May 2024 19:34:14 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube-nocookie.com/generate_204?Si1FiQ

142.250.74.78

204 No Content

0 B

URL GET HTTP/3
www.youtube-nocookie.com/generate_204?Si1FiQ
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /generate_204?Si1FiQ HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Tue, 07 May 2024 19:34:14 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube-nocookie.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8

142.250.74.78

200 OK

31 B

URL POST HTTP/3
www.youtube-nocookie.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JSON text data
Size
31 B (31 bytes)
Hash
5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336

HTTP Headers

POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1715110456055
Content-Type: application/json
X-Goog-Visitor-Id: CgtLMldLZk5TcmlMNCizhOqxBjIOCgJOTxIIEgQSAgsMIEM%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240501.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1715110452965&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C396%2C248&vis=1&wgl=true&ca_type=image
Content-Length: 7978
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 07 May 2024 19:34:16 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.youtube-nocookie.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8

142.250.74.78

200 OK

31 B

URL POST HTTP/3
www.youtube-nocookie.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
142.250.74.78:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0
ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT

File type
JSON text data
Size
31 B (31 bytes)
Hash
5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336

HTTP Headers

POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1715110480151
Content-Type: application/json
X-Goog-Visitor-Id: CgtLMldLZk5TcmlMNCizhOqxBjIOCgJOTxIIEgQSAgsMIEM%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240501.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1715110452965&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C396%2C248&vis=1&wgl=true&ca_type=image
Content-Length: 998
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 07 May 2024 19:34:40 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

launcherleaks.net/uploads/javascript_global/root_js_lang_1.js?v=f71abd72281715110437

104.21.10.110

200 OK

108 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_global/root_js_lang_1.js?v=f71abd72281715110437
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
108 kB (108259 bytes)
Hash
dfb4f4a37cacac558a02e348876805dc
a3c9316578d617bd8869a2a234b2216586b27a45
8a21a5cc24b20509a317b3fb30c4a0feabc3eed7d754d402ccdb07e07341e8af

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_global/root_js_lang_1.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-1a6e3"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qdfXcH%2B4La9YFn6jdy36AkmPf%2FTcLp7mhzMWYNwRIY0%2BRXXkFlEnAeCI6vquzNwYxS%2BCUJooRxOrmZzHU84e5RuN%2BZN%2FS9VrfJDv4hKRj2it7QnlzjMYuuCwUt3h%2F%2B03R9K3Zg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555198f0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2022_11/271590_20221123180635_1_1296x.thumb.webp.166a2c2dbac4e4c4f2268cea650e863b.webp

104.21.10.110

200 OK

69 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2022_11/271590_20221123180635_1_1296x.thumb.webp.166a2c2dbac4e4c4f2268cea650e863b.webp
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 500x282, Scaling: [none]x[none], YUV color, decoders should clamp
Size
69 kB (68628 bytes)
Hash
a5cafec497475164eaaa1cff49c62d0d
efdf9c2d9471d73826ef40789fa53629bea5ff37
f0ef030362846f7c6fb69ae372a67d149d91324668c43d5067de956eaf09a0ec

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2022_11/271590_20221123180635_1_1296x.thumb.webp.166a2c2dbac4e4c4f2268cea650e863b.webp HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/webp
content-length: 68628
last-modified: Mon, 05 Feb 2024 07:25:03 GMT
etag: "65c08d4f-10c14"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3727
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Oc2%2F1JY49yaQkvDSz%2FYQkAeeqLLU5X4wjnnbSg2Kn2ayE7HC0gbpAnjqzkBsxAM8VDmx%2FwTNdOQvaazXhHFryb5e4Z%2Fc0SQs1F2%2BejnjHljqz6cq5vJIdGcwWTOCw%2FHmtuGHWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a563cbbd0b65-OSL
alt-svc: h3=":443"; ma=86400

i.imgur.com/gbpa60N.jpeg

151.101.236.193

200 OK

304 kB

URL GET HTTP/2
i.imgur.com/gbpa60N.jpeg
IP
151.101.236.193:443
ASN
#54113 FASTLY

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerSectigo Limited
Subject*.imgur.com
Fingerprint39:5B:E1:0D:4A:FC:A4:C7:F3:71:DE:C4:5C:12:69:F9:5F:58:9F:42
ValidityThu, 15 Feb 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
JPEG image data, baseline, precision 8, 1920x1080, components 3
Size
304 kB (303975 bytes)
Hash
6b3624509dd2b21b8bf528630202d2f3
c9b6b7e104447c635688ea35f6d6741a3f66a1ad
aa10e0dd5636ed336e58dfd065e3e5ccb5acddcae04b2489faee68dfe18101a0

HTTP Headers

GET /gbpa60N.jpeg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
last-modified: Thu, 25 Apr 2024 15:47:33 GMT
etag: "6b3624509dd2b21b8bf528630202d2f3"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: JFK50-P6
x-amz-cf-id: wKhO_yk60BpzX-zrtbJacWkksGcxEaOtlu9VPpPE3Y_IWnNxys-m_A==
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 1050398
date: Tue, 07 May 2024 19:34:11 GMT
x-served-by: cache-iad-kjyo7100161-IAD, cache-osl6521-OSL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 33, 0
x-timer: S1715110451.392247,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 303975
X-Firefox-Spdy: h2

launcherleaks.net/uploads/css_built_27/20e9fb241d987e07d4fc702c601c3ed8_downloads_responsive.css?v=f71abd72281714889716

104.21.10.110

200 OK

934 B

URL GET HTTP/3
launcherleaks.net/uploads/css_built_27/20e9fb241d987e07d4fc702c601c3ed8_downloads_responsive.css?v=f71abd72281714889716
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (944), with no line terminators
Size
934 B (934 bytes)
Hash
fe5ac1a4ab4caea663a65254c9c964cf
f47bb77e21cc6cc7f5ac57f69ea00f1d3a59fcfc
d306fddb662c56c73a09b45ffd3abaea135ed7312932c422817ce3aeb36706b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_27/20e9fb241d987e07d4fc702c601c3ed8_downloads_responsive.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:17 GMT
etag: W/"663723f5-3a6"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5239
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yEwR3sb4xF0hYVW9iPNFPhDV5HocGgkLpwSIFbq4PGvuGGmzW2Hx%2FozTNwvk8KXq%2FapH2%2FCrq1FfQmz3ycYPc9hqu9df7UJ90TIuToMn5ti1yNnfULnl3NIv66792stQVhv11w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554e94c0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/javascript_downloads/front_front_view.js?v=f71abd72281715110437

104.21.10.110

200 OK

4.4 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_downloads/front_front_view.js?v=f71abd72281715110437
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JavaScript source, ASCII text, with very long lines (4427), with no line terminators
Size
4.4 kB (4382 bytes)
Hash
b21f7fe12f63c3f9e923ddf4b50318f6
fa6bbcc23164efc154682bdb588f51d711c0dcdd
3be7ba667b5c819266511385294c565527c129a904cee55a7128915211b2212c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_downloads/front_front_view.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:57 GMT
etag: W/"663a8225-111e"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q4T0GdNV7r7IlL6pa8ShIXDnlvVlAYN1Bb4NlvCXC5JdgbUhT%2FtiSsJC9yJ87lGvhz8RccmFWssvD90nYlUvlBvOKspR%2B9OhDI6cWZjaP3dlwtx%2B3wafXwsUEZ6x7QOvTuAlTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a55519a60b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.css

104.21.10.110

200 OK

15 kB

URL GET HTTP/3
launcherleaks.net/uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.css
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (14925)
Size
15 kB (15180 bytes)
Hash
a695c6b6c6a2d0e245136a61110d64ce
2b3d7aa150054e72098c83f6fe6dcad72944defb
172381b5313c5d1c2c9972f45e7e4c12f1a59c2f185cca365a8750dcea48acf6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.css HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:17 GMT
etag: W/"663723f5-3b4c"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wXuo3W4W5e8fQd576%2FTzm3feF0w%2BIT2RZwf5sRSBYTBoHrZDINGz6ILSWwVPJhhyxmV%2FmA2LMXkTK9MPhED9FXmHKaREnVs8k1a1onCTRj%2FK81uP%2FmCsarVU%2Bh7%2FuadtHVwl3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554e9570b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/javascript_global/root_framework.js?v=f71abd72281715110437

104.21.10.110

200 OK

447 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_global/root_framework.js?v=f71abd72281715110437
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
447 kB (447353 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_global/root_framework.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-6d379"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kLXZQqOPRS%2BbaBEc9VnPE7mA4nfmJ43UKTHD9MSd3aw5n5QyDWqHfqOpek42ibUGc8ZqdSxQ9RwIWNNAx1FuzCUaODKILXuhESVM4pj%2BwZHFgJ22t%2BEJCchJHXNH8%2F8UDuAn9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555199a0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_04/86594cd2864fc6a0de7a78960d88c122fdd70094.thumb.gif.15b70b2fb4dcc87a452c80cc95ab93ff.gif

104.21.10.110

200 OK

3.9 MB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_04/86594cd2864fc6a0de7a78960d88c122fdd70094.thumb.gif.15b70b2fb4dcc87a452c80cc95ab93ff.gif
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
3.9 MB (3945875 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_04/86594cd2864fc6a0de7a78960d88c122fdd70094.thumb.gif.15b70b2fb4dcc87a452c80cc95ab93ff.gif HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/gif
content-length: 3945875
last-modified: Wed, 17 Apr 2024 18:24:23 GMT
etag: "662013d7-3c3593"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lZOo5DRJDx6hAYYWqLpKCSU1nsKbb05U5xIrilzrrdXDFVOA%2BlHIgDRtNPfHWe8xXflYFUq1NOXz8%2Fn0q%2Fdb1ghxvv3UMqFY%2B%2BJBg2AbJH4forgv7%2FAbav7al%2Fiek%2BbXxQrB6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56109050b65-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_27/258adbb6e4f3e83cd3b355f84e3fa002_custom.css?v=f71abd72281714889716

104.21.10.110

200 OK

24 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_27/258adbb6e4f3e83cd3b355f84e3fa002_custom.css?v=f71abd72281714889716
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (23709), with no line terminators
Size
24 kB (23709 bytes)
Hash
bf28efbd565f583f0153cdfa20ccfcb6
a722574c1dcc18700be4f17289a4cd5c206ef63d
0629f57c0d3c375834b1828df484e0853afd113c4863d62cd5ab34b2f2e0e116

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_27/258adbb6e4f3e83cd3b355f84e3fa002_custom.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:17 GMT
etag: W/"663723f5-5c9d"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lWgabupTv57opyL56FM%2F%2BM74Z1Hcft%2F%2BpBV7bRlWrZYnRYrx9Vn9tu85D%2Flyfqz%2BczhkAqVlRdNcdOPOMflTPbmbrjfO8%2FgcLLUnncLXXWKMKk%2F7lkgdmejNJ8%2F9MEJY%2B2QtyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554e9540b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

use.fontawesome.com/releases/v6.4.2/css/all.css

104.21.27.152

200 OK

102 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/css/all.css
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (52276)
Size
102 kB (102217 bytes)
Hash
5222e06b77a1692fa2520a219840e6be
8b4236206a8b86af3761a244277663046d7ff7ee
0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5

HTTP Headers

GET /releases/v6.4.2/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
etag: W/"5222e06b77a1692fa2520a219840e6be"
last-modified: Fri, 22 Sep 2023 01:46:33 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 612442
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DhWYPHN7b5tvpF5cTAr5SXF0%2BxVwmiXQFxrXQUK5rGxSVRFy7%2FcKrc2SEPt89UNq0PchdyfG%2FNL06C7wH9DjNjjMOSFgcX3kF7dwxIoha4f52n6cUKmOvqbVyJruIYuSQm4YT%2Bph"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a5575af05688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

launcherleaks.net/uploads/javascript_core/plugins_plugins.js?v=f71abd72281715110437

104.21.10.110

200 OK

1.1 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_core/plugins_plugins.js?v=f71abd72281715110437
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JavaScript source, ASCII text, with very long lines (1085), with no line terminators
Size
1.1 kB (1070 bytes)
Hash
a3a3b439d522bbb2006fcebe7b4258dc
e6afd992d4ffeba64c6ce056d394c130014856eb
ca1aecb3a408053150bdbfa325c0c8c19b7a9f2fac2e51a88c82748de03e0989

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_core/plugins_plugins.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-42e"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5x0NKc9LGx%2FxvyepOIWU9VdZJ6fcXYiuEXZ%2BhVS2XTD237VUyRMsZghghXq5pD09rbnQQrKqGFM1jzc%2B9%2FbhFipZuoO0U9dy0n0K6j4OmH5s%2B6ZWRJu94JudLQlqKxVvNqKaSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a55519a10b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

i.gifer.com/4bXG.webp

0.0.0.0

0 B

URL GET
i.gifer.com/4bXG.webp
IP
0.0.0.0:0
ASN
#0

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerLet's Encrypt
Subjectgifer.com
Fingerprint97:0F:D7:9D:0C:22:57:27:95:17:B5:9B:EF:86:BD:14:D6:D8:8E:57
ValidityFri, 26 Apr 2024 20:03:56 GMT - Thu, 25 Jul 2024 20:03:55 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /4bXG.webp HTTP/1.1
Host: i.gifer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 19:34:13 GMT
content-type: text/plain; charset=utf-8
last-modified: Mon, 06 Sep 2021 09:36:14 GMT
vary: Accept-Encoding
etag: W/"6135e10e-19566"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2

launcherleaks.net/uploads/javascript_global/root_front.js?v=f71abd72281715110437

104.21.10.110

200 OK

105 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_global/root_front.js?v=f71abd72281715110437
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
105 kB (105422 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_global/root_front.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-19bce"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h%2B5L%2FLSWPtdtRrn3%2F2YGXJs5RFPQRngr5tVj6F75IHciCBxSHS%2BKiyIcY%2B%2FNGAKEbDwLgzo%2BtEXgSMUAnzwPNtEUiFF4M%2FQTWjrxf5PPYZLnq%2B0p5Jgjb6YZsi4xMQu1zOHjWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a55519a20b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/

104.21.10.110

200 OK

184 kB

URL User Request GET HTTP/2
launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
184 kB (183787 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /file/7615-white-custom-clothing-pack-rare-leak/ HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/html;charset=UTF-8
set-cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; path=/; secure; HttpOnly
x-ips-loggedin: 0
vary: Cookie, Accept-Encoding
x-xss-protection: 0, 1; mode=block
x-frame-options: sameorigin, SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-content-security-policy: frame-ancestors 'self'
referrer-policy: strict-origin-when-cross-origin
last-modified: Tue, 07 May 2024 19:34:09 GMT
expires: Tue, 07 May 2024 19:49:09 GMT
cache-control: no-cache="Set-Cookie", max-age=900, public, s-maxage=900, stale-while-revalidate, stale-if-error
strict-transport-security: max-age=15768000; includeSubDomains;
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GJcEyv%2FH9tYrWoywty4%2FgmxqKf4zc6jtZBU6S1qRMS18UA6MSHuPxAychhghtzPqFX9TBBDsg2VOiY%2FEz4VEs%2F6SmXV0OcmaeuR7wxfDwIVEl0ipWWH%2Bum0ZDyAEt5HXyWokjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a54d4f2056ba-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

launcherleaks.net/uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js

104.21.10.110

200 OK

135 kB

URL GET HTTP/3
launcherleaks.net/uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JavaScript source, ASCII text, with very long lines (65281)
Size
135 kB (134779 bytes)
Hash
d76dc704cfe2bb6f6a5fb1528c395c67
b58e50e0c92c404c26673305a2e4a259937c6a16
776e433644a3f8258ae65109332b33eaf7f9d98de6d9dff61624a84db0ca0988

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/javascript
last-modified: Sun, 05 May 2024 06:15:16 GMT
etag: W/"663723f4-20e7b"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ht%2BCL1%2BeXSrtVI20l2w2Ddgg9jiO1WG%2BUHJtVFggV1zpfJbUqaSkPnLQidNGSgLFjvd7JriWy2uy2BCr%2B9IbVsm1oXre2EikkYsrj4r2jr5gmJyeg8NsJR6RH7JwY25z5xZvmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a55519aa0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

i.gyazo.com/cf48240e1a5908853bf7c7444351a6de.png

104.18.24.163

200 OK

157 kB

URL GET HTTP/2
i.gyazo.com/cf48240e1a5908853bf7c7444351a6de.png
IP
104.18.24.163:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerLet's Encrypt
Subjectgyazo.com
FingerprintB1:88:95:2F:E3:8B:92:D7:5A:FA:0F:4B:8C:CB:22:9F:DF:EA:DB:F8
ValidityWed, 03 Apr 2024 02:09:12 GMT - Tue, 02 Jul 2024 02:09:11 GMT

File type
PNG image data, 1046 x 646, 8-bit/color RGBA, non-interlaced
Size
157 kB (157231 bytes)
Hash
cf48240e1a5908853bf7c7444351a6de
8ac4058e3f5c321e9201c344081a68a59cb79e32
7941c1300641e6d3729686a430e0c4248168d69fb4243214d128fbe6a936d8dd

HTTP Headers

GET /cf48240e1a5908853bf7c7444351a6de.png HTTP/1.1
Host: i.gyazo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 157231
cf-ray: 8803a561a85256c7-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://gyazo.com
age: 400505
cache-control: public, max-age=31536000
etag: "cf48"
expires: Wed, 07 May 2025 19:34:11 GMT
set-cookie: Gyazo_cfwoker=i; Secure; HttpOnly; SameSite=None; Expires=Tue, 01 Jan 2030 00:00:00 GMT
vary: Accept-Encoding
via: 1.1 google
access-control-allow-credentials: true
content-dpr: 1.000000
x-cache-level: ZS
server: cloudflare
X-Firefox-Spdy: h2

launcherleaks.net/uploads/javascript_core/front_front_widgets.js?v=f71abd72281715110437&csrfKey=&antiCache=f71abd72281715110437

104.21.10.110

200 OK

17 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_core/front_front_widgets.js?v=f71abd72281715110437&csrfKey=&antiCache=f71abd72281715110437
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JavaScript source, ASCII text, with very long lines (1733)
Size
17 kB (16561 bytes)
Hash
9e272c457e8ec0e369564c580ef9f882
007f62cf572d4c263b245ce6174989675fb5a9fc
a4156775c0f3a08ac4489f72566dd73853c7566c3e75e083d2d0acbf72acdbae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_core/front_front_widgets.js?v=f71abd72281715110437&csrfKey=&antiCache=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:13 GMT
content-type: application/javascript
last-modified: Sun, 05 May 2024 06:15:17 GMT
etag: W/"663723f5-40b1"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lc%2B4XeKZdpL9QcGCC5O%2F%2F4bTxmND7djj8kpbrODlU69oVlOiVcots9JMageJX%2B%2FPKpGNlJE1eJjOF13QxX1qbEHcKAfDN15QbQOnwfgGzCmoxKLqFgNh2668gZZ1iZjVr%2F%2Fs9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56aabb30b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

yt3.ggpht.com/a1lb2wltUZHiWZKIyrFwon_VBAhI07uFhjjZsjBG_IR-xL4tc4a8D0Elf4GmFLhPItEJGejR3g=s68-c-k-c0x00ffffff-no-rj

142.250.74.161

200 OK

1.5 kB

URL GET HTTP/2
yt3.ggpht.com/a1lb2wltUZHiWZKIyrFwon_VBAhI07uFhjjZsjBG_IR-xL4tc4a8D0Elf4GmFLhPItEJGejR3g=s68-c-k-c0x00ffffff-no-rj
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint7B:64:D0:4F:29:87:0A:A8:90:15:F1:9F:B6:8F:FB:D6:AC:D2:76:56
ValidityTue, 16 Apr 2024 04:13:47 GMT - Tue, 09 Jul 2024 04:13:46 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3
Size
1.5 kB (1476 bytes)
Hash
920e58ecb10d5834085d9d7266e1f56b
397aab0c32d2d25c093f6e4f75bd88f6564c71e9
5767766e28d2d911f9c42f8a6ef3220b255029968ed700a3024aff60d7248f09

HTTP Headers

GET /a1lb2wltUZHiWZKIyrFwon_VBAhI07uFhjjZsjBG_IR-xL4tc4a8D0Elf4GmFLhPItEJGejR3g=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 1476
x-xss-protection: 0
date: Tue, 07 May 2024 17:00:43 GMT
expires: Wed, 08 May 2024 17:00:43 GMT
cache-control: public, max-age=86400, no-transform
age: 9211
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

launcherleaks.net/uploads/css_built_27/90eb5adf50a8c640f633d47fd7eb1778_core.css?v=f71abd72281714889716

104.21.10.110

200 OK

24 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_27/90eb5adf50a8c640f633d47fd7eb1778_core.css?v=f71abd72281714889716
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (24436), with no line terminators
Size
24 kB (24436 bytes)
Hash
b4a8b5b1d6079fd5b2bdb2a11e2ef329
1f4c5ad63df6a7b3dadfd6801e87d43356055e9e
52847b98c3ef06e9ea71a5f4e713bc5ca92ec1d59233c37663d00d9f16b21194

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_27/90eb5adf50a8c640f633d47fd7eb1778_core.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:16 GMT
etag: W/"663723f4-5f74"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XszTcJ%2FpJRLs87N2C4w39m1UDrtztE6GB3YwNf13HfF3YSnB5VJ6lmnjVQoMqd6CHjpwE2JiNn8cWxUzAzo%2B334Zj6f8Yjej4m4H3IZgmw%2FhwJUPjRXMiM0uKdCkhbn3uhvV3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d9410b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_27/ecf8cbf597c675f333fa61d7fe877660_widgets.css?v=f71abd72281714889716

104.21.10.110

200 OK

277 B

URL GET HTTP/3
launcherleaks.net/uploads/css_built_27/ecf8cbf597c675f333fa61d7fe877660_widgets.css?v=f71abd72281714889716
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with no line terminators
Size
277 B (277 bytes)
Hash
a375b3f0fae08440f22bcf1bfc025cba
a18d88403675ec7a8dd71a48eee37f4e245dbdff
cf35a9b2bbe2737ba157dd24de9e11e7a4e2216ed2c2f4542f2d3f83d0bee7d0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_27/ecf8cbf597c675f333fa61d7fe877660_widgets.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:18 GMT
etag: W/"663723f6-115"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EY0KGavDnGhrJXggBxMpF6f5NUTbDiSR1I5rjqZR6EqCEaupfYR5t3b3s9iC%2Fz1AIya4wPsGEbwzRc9iB9YVgHTxQqd86P8l1ezypjewi%2BvLtJRvEnohgLSE16n%2FV9Z2BtKM9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554e94f0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/

104.21.10.110

200 OK

0 B

URL GET HTTP/3
launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /file/7615-white-custom-clothing-pack-rare-leak/ HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: text/html;charset=UTF-8
x-ips-loggedin: 0
vary: Cookie, Accept-Encoding
x-xss-protection: 0, 1; mode=block
x-frame-options: sameorigin, SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-content-security-policy: frame-ancestors 'self'
referrer-policy: strict-origin-when-cross-origin
last-modified: Tue, 07 May 2024 19:34:10 GMT
expires: Tue, 07 May 2024 19:49:10 GMT
cache-control: no-cache="Set-Cookie", max-age=900, public, s-maxage=900, stale-while-revalidate, stale-if-error
strict-transport-security: max-age=15768000; includeSubDomains;
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DF7aNhw6g0TUxJcsBXKl3ubkEaWQtLQxwSUg5uh%2BqifQ3LJwwpFtp%2BX67jjgIU4AkgDUY9%2BVTEVIjHLBoz%2BGEaOgxyZtHMIIxLfZ8%2F4IK1cRCWxdhULy9HwUTbOXRFj5QkuViA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a55a8ffa0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/javascript_global/root_map.js?v=f71abd72281715110437

104.21.10.110

200 OK

2.6 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_global/root_map.js?v=f71abd72281715110437
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (2756), with no line terminators
Size
2.6 kB (2634 bytes)
Hash
5afc2c4c433cb478d788bd58bee1c8ca
0393b3d12c52af2d60a913ac7529cfaf6a247869
93c3ed6d9e28b2d5f21aa99cddefa3685c329344870ff962018d6e6923cf6c5b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_global/root_map.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:34:08 GMT
etag: W/"663a8230-a4a"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BJBauBnPwy1JJoXneFKR0Y%2FNFCd3ntwadPB2Ja1%2FHvCaHxWLbiIw1IaA2HLIKSMmrfg26R51NfoAveNV9hD6mxZ44FZfdaV5DJd%2BoO7rpC8K%2Bc063QuoP7HwHILpRUa5oY%2FOdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a55519a70b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (162)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash