cdn.discordapp.com/attachments/1244614315357769770/1244614373339693086/kom.mp4?ex=6655c0f6&is=66546f76&hm=d554e4fbb08d7177070e8c605ed26e63ec44af99dc06d8eca3624e1e61147bcc&
![Report - komxxa3p4.cc/invite/ (1) Report - komxxa3p4.cc/invite/ (1)](https://i0.wp.com/urlquery.net/static/images/flags/zz.png)
URL
cdn.discordapp.com/attachments/1244614315357769770/1244614373339693086/kom.mp4?ex=6655c0f6&is=66546f76&hm=d554e4fbb08d7177070e8c605ed26e63ec44af99dc06d8eca3624e1e61147bcc&
IP
162.159.130.233:0
ASN
#13335 CLOUDFLARENET
File type
ISO Media, MP4 v2 [ISO 14496-14]
Size
2.2 MB (2197785 bytes)
Hash
70d2c2deb158fb1e0d2b7f85956dd2c9
0f68dedca7f55e2ee9f553cf11bfd30ee0082468
2d4f3522eb3dd9ebcb07f31a489f93c876d73a00e1d2fd7beed2fc27d0bd7bad
HTTP Headers
GET /attachments/1244614315357769770/1244614373339693086/kom.mp4?ex=6655c0f6&is=66546f76&hm=d554e4fbb08d7177070e8c605ed26e63ec44af99dc06d8eca3624e1e61147bcc& HTTP/1.1Host: cdn.discordapp.comUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5Accept-Language: en-US,en;q=0.5Range: bytes=0-DNT: 1Connection: keep-aliveReferer: https://komxxa3p4.cc/Sec-Fetch-Dest: videoSec-Fetch-Mode: no-corsSec-Fetch-Site: cross-siteAccept-Encoding: identityPragma: no-cacheCache-Control: no-cache
HTTP/2 206 Partial Contentdate: Mon, 27 May 2024 17:05:31 GMTcontent-type: video/mp4content-length: 2197785content-range: bytes 0-2197784/2197785cf-ray: 88a7971b1ede56a9-OSLcf-cache-status: HITaccept-ranges: bytesage: 17538cache-control: public, max-age=31536000content-disposition: attachment; filename=kom.mp4etag: "70d2c2deb158fb1e0d2b7f85956dd2c9"expires: Tue, 27 May 2025 17:05:31 GMTlast-modified: Mon, 27 May 2024 11:33:10 GMTvary: Accept-Encodingalt-svc: h3=":443"; ma=86400x-goog-generation: 1716809590507034x-goog-hash: crc32c=PD8lxQ==, md5=cNLC3rFY+x4NK3+FlW3SyQ==x-goog-metageneration: 1x-goog-storage-class: STANDARDx-goog-stored-content-encoding: identityx-goog-stored-content-length: 2197785x-guploader-uploadid: ABPtcPoj9rSxsmBEsSFovGGPTGE4Y3E8DlADSMaZiSANbsBlFlk2DfMq029Lt3HMhZHqrDXx7bgx-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodpreport-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MQAozqojrpm1rLWFxgYTGvq3kt4sIL6sV6dzA54UH6oxMYUVc651x9bvmSZORa3%2Fg%2BWT9DllnY6GC%2Bi2dH35hZ313oDVgd9sQExFkKeKqOlvk8ox%2Fn0Gdy6CyCTHR2Nnea22wQ%3D%3D"}],"group":"cf-nel","max_age":604800}nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}set-cookie: __cf_bm=RzthMfxw_acKCf.iGa3FZO9mQP796PAmuZyrAl19x0Y-1716829531-1.0.1.1-Ao0uBlGuK4yfKTTYRk7nMrPbuWb8ftv4gO8H9kZzQ_tfmXMmNr.g93AkfLzsfS4FoM5CzJ4gyHwMPINmQrWLwQ; path=/; expires=Mon, 27-May-24 17:35:31 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None_cfuvid=AgpH45GfPcSAAlMAXQpQAO435I49M.SeE.iSJmw2Lnc-1716829531413-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=Noneserver: cloudflareX-Firefox-Spdy: h2
komxxa3p4.cc/js/chunk-vendors.ea790e22.js
![Report - komxxa3p4.cc/invite/ (3) Report - komxxa3p4.cc/invite/ (3)](https://i0.wp.com/urlquery.net/static/images/flags/US.png)
URL GET HTTP/3
komxxa3p4.cc/js/chunk-vendors.ea790e22.js
IP
172.67.145.94:443
ASN
#13335 CLOUDFLARENET
Requested by
https://komxxa3p4.cc/invite/
Certificate
IssuerGoogle Trust Services LLC
Subjectkomxxa3p4.cc
Fingerprint30:26:34:71:B6:4E:C4:39:5A:4D:F4:3D:2A:EC:98:B7:28:A2:C1:8D
ValidityThu, 23 May 2024 15:57:54 GMT - Wed, 21 Aug 2024 15:57:53 GMT
File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (51759)
Size
268 kB (267692 bytes)
Hash
4fee178f809d1b2a829099a8bb91c56c
178b6322fdc40c08fcbda0c096c668855ad49b51
c3580c9951b9554639c1404a246b3f27f818a99240c728f04cb964cd9e50b73d
Detections
Analyzer | Verdict | Alert |
---|---|---|
Quad9 DNS | malicious | Sinkholed |
HTTP Headers
GET /js/chunk-vendors.ea790e22.js HTTP/1.1Host: komxxa3p4.ccUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: */*Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brDNT: 1Connection: keep-aliveReferer: https://komxxa3p4.cc/invite/Sec-Fetch-Dest: scriptSec-Fetch-Mode: corsSec-Fetch-Site: same-originPragma: no-cacheCache-Control: no-cacheTE: trailers
HTTP/3 200 OKdate: Mon, 27 May 2024 17:05:30 GMTcontent-type: text/javascript; charset=utf-8last-modified: Mon, 27 May 2024 12:02:57 GMTcache-control: max-age=14400cf-cache-status: EXPIREDreport-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CN2q5fkEMG4ak%2FokHFC3btjXUx8e364iHeIGslwb39qS8z75ESrgg3rgJJeeKrbGx%2BbzIuyVPTBgFjH%2BnDvqh17VLA7VT4troH13cNq8mT569rMaVLduoLiOORJ8se4%3D"}],"group":"cf-nel","max_age":604800}nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}vary: Accept-Encodingserver: cloudflarecf-ray: 88a797141e7a569f-OSLcontent-encoding: bralt-svc: h3=":443"; ma=86400
komxxa3p4.cc/img/icons/favicon.svg
![Report - komxxa3p4.cc/invite/ (5) Report - komxxa3p4.cc/invite/ (5)](https://i0.wp.com/urlquery.net/static/images/flags/US.png)
URL GET HTTP/3
komxxa3p4.cc/img/icons/favicon.svg
IP
172.67.145.94:443
ASN
#13335 CLOUDFLARENET
Requested by
https://komxxa3p4.cc/invite/
Certificate
IssuerGoogle Trust Services LLC
Subjectkomxxa3p4.cc
Fingerprint30:26:34:71:B6:4E:C4:39:5A:4D:F4:3D:2A:EC:98:B7:28:A2:C1:8D
ValidityThu, 23 May 2024 15:57:54 GMT - Wed, 21 Aug 2024 15:57:53 GMT
File type
HTML document, ASCII text, with very long lines (2705), with no line terminators
Size
1.4 kB (1417 bytes)
Hash
9fb8d2a0e2561818acae6f46389202f3
c34ce54fc4c295b41f3d28db53b751b03b2b0914
554804d18061673e4b8f66d87a5b1f1ee363c1fcd8a6c6f0d3abaf784bccfedf
Detections
Analyzer | Verdict | Alert |
---|---|---|
Quad9 DNS | malicious | Sinkholed |
HTTP Headers
GET /img/icons/favicon.svg HTTP/1.1Host: komxxa3p4.ccUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: image/avif,image/webp,*/*Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brDNT: 1Connection: keep-aliveReferer: https://komxxa3p4.cc/invite/Cookie: inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=falseSec-Fetch-Dest: imageSec-Fetch-Mode: no-corsSec-Fetch-Site: same-originPragma: no-cacheCache-Control: no-cacheTE: trailers
HTTP/3 200 OKdate: Mon, 27 May 2024 17:05:31 GMTcontent-type: text/html; charset=utf-8cache-control: max-age=14400cf-cache-status: HITage: 4178last-modified: Mon, 27 May 2024 15:55:53 GMTreport-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RfWsj2jWrVP9MWIfKlcZceiNjxKKh3am5n5j7ItrQqNf3VJuqDw3LdRMXWM8kQ0dWLQO7FikWFs2dTW9rr2xzcvFMpBiZJ5hPoUf%2BdG5Ob1y2QnqqmHjeNBaeXbrG6A%3D"}],"group":"cf-nel","max_age":604800}nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}vary: Accept-Encodingserver: cloudflarecf-ray: 88a7971e5cd3569f-OSLcontent-encoding: bralt-svc: h3=":443"; ma=86400
komxxa3p4.cc/img/icons/apple-touch-icon-152x152.png
![Report - komxxa3p4.cc/invite/ (7) Report - komxxa3p4.cc/invite/ (7)](https://i0.wp.com/urlquery.net/static/images/flags/US.png)
URL GET HTTP/3
komxxa3p4.cc/img/icons/apple-touch-icon-152x152.png
IP
172.67.145.94:443
ASN
#13335 CLOUDFLARENET
Requested by
https://komxxa3p4.cc/invite/
Certificate
IssuerGoogle Trust Services LLC
Subjectkomxxa3p4.cc
Fingerprint30:26:34:71:B6:4E:C4:39:5A:4D:F4:3D:2A:EC:98:B7:28:A2:C1:8D
ValidityThu, 23 May 2024 15:57:54 GMT - Wed, 21 Aug 2024 15:57:53 GMT
File type
PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced
Size
4.0 kB (4046 bytes)
Hash
1a034e64d80905128113e5272a5ab95e
92328e60f63d690f33cd4961b9934a539dc29b82
4d9685d610c4411caadd8d36ce94d3303cf5b05c8e04d67fc232c16a4469a135
Detections
Analyzer | Verdict | Alert |
---|---|---|
Quad9 DNS | malicious | Sinkholed |
HTTP Headers
GET /img/icons/apple-touch-icon-152x152.png HTTP/1.1Host: komxxa3p4.ccUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: image/avif,image/webp,*/*Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brDNT: 1Connection: keep-aliveReferer: https://komxxa3p4.cc/invite/Cookie: inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=falseSec-Fetch-Dest: imageSec-Fetch-Mode: no-corsSec-Fetch-Site: same-originPragma: no-cacheCache-Control: no-cacheTE: trailers
HTTP/3 200 OKdate: Mon, 27 May 2024 17:05:32 GMTcontent-type: image/pngcontent-length: 4046last-modified: Mon, 27 May 2024 12:01:15 GMTcache-control: max-age=14400cf-cache-status: REVALIDATEDaccept-ranges: bytesreport-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kIrqDAw%2FCrUqPsV4ibecvKCY%2FYsm8kPF4y%2FOfVvKnV7y9q41I5E5s5JwwhcO%2BpmzgGGco*koSm3%2BeawqXul9Yje%2Foi0p4GusDdM%2B3YtSli9RA9wQXowpdbWemcX2Ui1E%3D"}],"group":"cf-nel","max_age":604800}nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}vary: Accept-Encodingserver: cloudflarecf-ray: 88a7971e5cd0569f-OSLalt-svc: h3=":443"; ma=86400
ocsp.sectigochina.com/
![Report - komxxa3p4.cc/invite/ (9) Report - komxxa3p4.cc/invite/ (9)](https://i0.wp.com/urlquery.net/static/images/flags/zz.png)
URL
ocsp.sectigochina.com/
IP
104.18.38.66:0
ASN
#13335 CLOUDFLARENET
File type
data
Size
472 B (472 bytes)
Hash
08f2a9982763f2a1651ba2da7ee54805
a14c293d74b25eddcfda946138781f5cf6416bf7
3b86041a7600bc5a5ed34b0f02a964e72336b1d0cb646f1af321c45f2759c931
HTTP Headers
POST / HTTP/1.1Host: ocsp.sectigochina.comUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: */*Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateContent-Type: application/ocsp-requestContent-Length: 84Connection: keep-alivePragma: no-cacheCache-Control: no-cache
HTTP/1.1 200 OKDate: Mon, 27 May 2024 17:05:32 GMTContent-Type: application/ocsp-responseContent-Length: 472Connection: keep-aliveLast-Modified: Sun, 26 May 2024 01:54:13 GMTExpires: Sun, 02 Jun 2024 01:54:12 GMTEtag: "a14c293d74b25eddcfda946138781f5cf6416bf7"Cache-Control: max-age=464578,s-maxage=1800,public,no-transform,must-revalidateX-CCACDN-Proxy-ID: mcdpinlb2X-Frame-Options: SAMEORIGINCF-Cache-Status: DYNAMICServer: cloudflareCF-RAY: 88a79721dca056c9-OSL
komxxa3p4.cc/js/app.f8ba1f8a.js
![Report - komxxa3p4.cc/invite/ (11) Report - komxxa3p4.cc/invite/ (11)](https://i0.wp.com/urlquery.net/static/images/flags/US.png)
URL GET HTTP/3
komxxa3p4.cc/js/app.f8ba1f8a.js
IP
172.67.145.94:443
ASN
#13335 CLOUDFLARENET
Requested by
https://komxxa3p4.cc/invite/
Certificate
IssuerGoogle Trust Services LLC
Subjectkomxxa3p4.cc
Fingerprint30:26:34:71:B6:4E:C4:39:5A:4D:F4:3D:2A:EC:98:B7:28:A2:C1:8D
ValidityThu, 23 May 2024 15:57:54 GMT - Wed, 21 Aug 2024 15:57:53 GMT
File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (30346 bytes)
Hash
3101cb773b539922a02f68d3387f575a
9b0b8ade8d22647978910ceab5e2cf953e09ce4d
b3b1467c1cb2465f8798736d9e283d0f2b40dd60efabe9cbe0d0e0b42402cff5
Detections
Analyzer | Verdict | Alert |
---|---|---|
Quad9 DNS | malicious | Sinkholed |
HTTP Headers
GET /js/app.f8ba1f8a.js HTTP/1.1Host: komxxa3p4.ccUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: */*Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brDNT: 1Connection: keep-aliveReferer: https://komxxa3p4.cc/invite/Sec-Fetch-Dest: scriptSec-Fetch-Mode: corsSec-Fetch-Site: same-originPragma: no-cacheCache-Control: no-cacheTE: trailers
HTTP/3 200 OKdate: Mon, 27 May 2024 17:05:30 GMTcontent-type: text/javascript; charset=utf-8last-modified: Mon, 27 May 2024 12:02:31 GMTcache-control: max-age=14400cf-cache-status: MISSreport-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CSSfLk9wIAElXzSYkqgDMB6S7Q4bw1ek%2Bv0UVlApz2uERwTaCIFPgIp3ixO7LOig%2FhjuixxQS%2BMHY1%2FmOpf4lFGYRwZlPDiniNupDlv8quDPU2acOGxDcvS6RcIdrJY%3D"}],"group":"cf-nel","max_age":604800}nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}vary: Accept-Encodingserver: cloudflarecf-ray: 88a797142e89569f-OSLcontent-encoding: bralt-svc: h3=":443"; ma=86400
komxxa3p4.cc/invite/
![Report - komxxa3p4.cc/invite/ (13) Report - komxxa3p4.cc/invite/ (13)](https://i0.wp.com/urlquery.net/static/images/flags/US.png)
URL User Request GET HTTP/2
komxxa3p4.cc/invite/
IP
172.67.145.94:443
ASN
#13335 CLOUDFLARENET
Certificate
IssuerGoogle Trust Services LLC
Subjectkomxxa3p4.cc
Fingerprint30:26:34:71:B6:4E:C4:39:5A:4D:F4:3D:2A:EC:98:B7:28:A2:C1:8D
ValidityThu, 23 May 2024 15:57:54 GMT - Wed, 21 Aug 2024 15:57:53 GMT
File type
HTML document, ASCII text, with very long lines (2871), with no line terminators
Size
2.7 kB (2705 bytes)
Hash
ec9a24996a791b51e4bb0ccbf9fd9059
9f715cb958885f745a4ce14f2bd42d02cb514aef
5e234deccf131d0995bf73c6bd2cff1c5a60c5cf87f0dd0b10c3bdf6bd2f4ba8
Detections
Analyzer | Verdict | Alert |
---|---|---|
Quad9 DNS | malicious | Sinkholed |
HTTP Headers
GET /invite/ HTTP/1.1Host: komxxa3p4.ccUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brDNT: 1Upgrade-Insecure-Requests: 1Connection: keep-aliveSec-Fetch-Dest: documentSec-Fetch-Mode: navigateSec-Fetch-Site: cross-sitePragma: no-cacheCache-Control: no-cache
HTTP/2 200 OKdate: Mon, 27 May 2024 17:05:29 GMTcontent-type: text/html; charset=utf-8cf-cache-status: DYNAMICreport-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nb0wCDb1vKH53UdulPGVzHKfRRcttdJbt0jpomwah6YSv9NqE8m%2FTtkPzQgw7%2FgrSUwEujAoCiHBG1OGAOKvgAg4z2cecNVcmTG%2BTk8D%2F%2BHAhYSDWhyhOS96EZd7lL0%3D"}],"group":"cf-nel","max_age":604800}nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}server: cloudflarecf-ray: 88a79710caf056ba-OSLcontent-encoding: bralt-svc: h3=":443"; ma=86400X-Firefox-Spdy: h2
komxxa3p4.cc/css/chunk-vendors.c57533e1.css
![Report - komxxa3p4.cc/invite/ (15) Report - komxxa3p4.cc/invite/ (15)](https://i0.wp.com/urlquery.net/static/images/flags/US.png)
URL GET HTTP/3
komxxa3p4.cc/css/chunk-vendors.c57533e1.css
IP
172.67.145.94:443
ASN
#13335 CLOUDFLARENET
Requested by
https://komxxa3p4.cc/invite/
Certificate
IssuerGoogle Trust Services LLC
Subjectkomxxa3p4.cc
Fingerprint30:26:34:71:B6:4E:C4:39:5A:4D:F4:3D:2A:EC:98:B7:28:A2:C1:8D
ValidityThu, 23 May 2024 15:57:54 GMT - Wed, 21 Aug 2024 15:57:53 GMT
File type
ASCII text, with very long lines (65536), with no line terminators
Size
156 kB (156544 bytes)
Hash
ebfffebc1f62c3be51082e6595a0a005
e278fbd6fd48150b3f366b50ed388983d934978c
f5ce9e73e1f7cea326eedd4f39d9b2d703ba4ccb31a6078cdc1fb16481298a32
Detections
Analyzer | Verdict | Alert |
---|---|---|
Quad9 DNS | malicious | Sinkholed |
HTTP Headers
GET /css/chunk-vendors.c57533e1.css HTTP/1.1Host: komxxa3p4.ccUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: text/css,*/*;q=0.1Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brDNT: 1Connection: keep-aliveReferer: https://komxxa3p4.cc/invite/Sec-Fetch-Dest: styleSec-Fetch-Mode: no-corsSec-Fetch-Site: same-originPragma: no-cacheCache-Control: no-cache
HTTP/3 200 OKdate: Mon, 27 May 2024 17:05:30 GMTcontent-type: text/css; charset=utf-8last-modified: Mon, 27 May 2024 12:01:11 GMTcache-control: max-age=14400cf-cache-status: HITage: 3374report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DYlPgJ%2FMUoMA8vh8TspAqAbDHiTutwcb7otZAErKgLFKI35F9UnloRZYMSzka5AambFXb8uCBAhbSB4gvWDxAtOO08qRv4hXQI2VeBYj0jkD5s3G0yHokDQBNLk3cHo%3D"}],"group":"cf-nel","max_age":604800}nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}vary: Accept-Encodingserver: cloudflarecf-ray: 88a797142e8a569f-OSLcontent-encoding: bralt-svc: h3=":443"; ma=86400
komxxa3p4.cc/getlog
![Report - komxxa3p4.cc/invite/ (17) Report - komxxa3p4.cc/invite/ (17)](https://i0.wp.com/urlquery.net/static/images/flags/US.png)
URL GET HTTP/3
komxxa3p4.cc/getlog
IP
172.67.145.94:443
ASN
#13335 CLOUDFLARENET
Requested by
https://komxxa3p4.cc/invite/
Certificate
IssuerGoogle Trust Services LLC
Subjectkomxxa3p4.cc
Fingerprint30:26:34:71:B6:4E:C4:39:5A:4D:F4:3D:2A:EC:98:B7:28:A2:C1:8D
ValidityThu, 23 May 2024 15:57:54 GMT - Wed, 21 Aug 2024 15:57:53 GMT
File type
JSON text data
Size
12 kB (12053 bytes)
Hash
5ec46d7b22e3608553fca4e5a0c22e9f
ab4b800b1a93b30e324e8c676144d37e59979fe7
f3d389cb10bac940f42a78627770422238a76333f994e53e935d27fe07858410
Detections
Analyzer | Verdict | Alert |
---|---|---|
Quad9 DNS | malicious | Sinkholed |
HTTP Headers
GET /getlog HTTP/1.1Host: komxxa3p4.ccUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: application/json, text/plain, */*Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brDNT: 1Connection: keep-aliveReferer: https://komxxa3p4.cc/enter/registerCookie: inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=falseSec-Fetch-Dest: emptySec-Fetch-Mode: corsSec-Fetch-Site: same-originPragma: no-cacheCache-Control: no-cache
HTTP/3 200 OKdate: Mon, 27 May 2024 17:05:31 GMTcontent-type: application/json; charset=utf-8cf-cache-status: DYNAMICreport-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kp0Ze7iiKY0XI%2BiFR7KXtzzONRDuxf184TcuUieXjSBaiPHWAOYNaC05GpW%2FGInZI9tlsXw0%2Bz4TcrZfWaisf3lW2J2jqv5FLFKxbO2Lwum7BXqxd13T%2F6jHnL4wvsU%3D"}],"group":"cf-nel","max_age":604800}nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}server: cloudflarecf-ray: 88a7971aaf42569f-OSLcontent-encoding: bralt-svc: h3=":443"; ma=86400
komx67apf.cc/socket.io/?EIO=3&transport=websocket
![Report - komxxa3p4.cc/invite/ (19) Report - komxxa3p4.cc/invite/ (19)](https://i0.wp.com/urlquery.net/static/images/flags/zz.png)
URL GET HTTP/1.1
komx67apf.cc/socket.io/?EIO=3&transport=websocket
IP
104.21.63.146:443
ASN
#13335 CLOUDFLARENET
Requested by
https://komxxa3p4.cc/invite/
Certificate
IssuerLet's Encrypt
Subjectkomx67apf.cc
Fingerprint16:93:6E:33:58:51:FE:D7:F1:2D:54:E4:E6:75:60:55:C4:30:19:F8
ValiditySun, 26 May 2024 15:02:29 GMT - Sat, 24 Aug 2024 15:02:28 GMT
File type
Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HTTP Headers
GET /socket.io/?EIO=3&transport=websocket HTTP/1.1Host: komx67apf.ccUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: */*Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brSec-WebSocket-Version: 13Origin: https://komxxa3p4.ccSec-WebSocket-Extensions: permessage-deflateSec-WebSocket-Key: cKYRVxBjYiNk/oIaN2PbPQ==DNT: 1Connection: keep-alive, UpgradeSec-Fetch-Dest: websocketSec-Fetch-Mode: websocketSec-Fetch-Site: cross-sitePragma: no-cacheCache-Control: no-cacheUpgrade: websocket
HTTP/1.1 101 Switching ProtocolsDate: Mon, 27 May 2024 17:05:31 GMTConnection: upgradeUpgrade: websocketSec-WebSocket-Accept: oP0TACUVUUjKnIYC7NKkLaoroTg=CF-Cache-Status: DYNAMICReport-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c103NDyeNhKlYYg1FYIaFkqFbD5eoCtZSJJa3wqsGVmcXY8AMes8OfPbYp2Q7XRZyeihO92fmhGCjRTUmCxznyxyBOJmNhZxJnvnIq7bpL%2F%2FidDArp0ljupK0xLZi9c%3D"}],"group":"cf-nel","max_age":604800}NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}Server: cloudflareCF-RAY: 88a7971b3d717130-OSLalt-svc: h3=":443"; ma=86400
cdn.discordapp.com/attachments/1244614315357769770/1244614373339693086/kom.mp4?ex=6655c0f6&is=66546f76&hm=d554e4fbb08d7177070e8c605ed26e63ec44af99dc06d8eca3624e1e61147bcc&
![Report - komxxa3p4.cc/invite/ (21) Report - komxxa3p4.cc/invite/ (21)](https://i0.wp.com/urlquery.net/static/images/flags/zz.png)
URL GET HTTP/2
cdn.discordapp.com/attachments/1244614315357769770/1244614373339693086/kom.mp4?ex=6655c0f6&is=66546f76&hm=d554e4fbb08d7177070e8c605ed26e63ec44af99dc06d8eca3624e1e61147bcc&
IP
162.159.130.233:443
ASN
#13335 CLOUDFLARENET
Requested by
https://komxxa3p4.cc/invite/
Certificate
IssuerCloudflare, Inc.
Subjectdiscordapp.com
Fingerprint97:8B:EE:AD:1E:BF:A1:69:E7:94:29:F7:55:7A:29:64:19:C7:81:39
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
File type
Size
2.2 MB (2197785 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HTTP Headers
GET /attachments/1244614315357769770/1244614373339693086/kom.mp4?ex=6655c0f6&is=66546f76&hm=d554e4fbb08d7177070e8c605ed26e63ec44af99dc06d8eca3624e1e61147bcc& HTTP/1.1Host: cdn.discordapp.comUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5Accept-Language: en-US,en;q=0.5Range: bytes=0-DNT: 1Connection: keep-aliveReferer: https://komxxa3p4.cc/Sec-Fetch-Dest: videoSec-Fetch-Mode: no-corsSec-Fetch-Site: cross-siteAccept-Encoding: identityPragma: no-cacheCache-Control: no-cache
HTTP/2 206 Partial Contentdate: Mon, 27 May 2024 17:05:31 GMTcontent-type: video/mp4content-length: 2197785content-range: bytes 0-2197784/2197785cf-ray: 88a7971b1ede56a9-OSLcf-cache-status: HITaccept-ranges: bytesage: 17538cache-control: public, max-age=31536000content-disposition: attachment; filename=kom.mp4etag: "70d2c2deb158fb1e0d2b7f85956dd2c9"expires: Tue, 27 May 2025 17:05:31 GMTlast-modified: Mon, 27 May 2024 11:33:10 GMTvary: Accept-Encodingalt-svc: h3=":443"; ma=86400x-goog-generation: 1716809590507034x-goog-hash: crc32c=PD8lxQ==, md5=cNLC3rFY+x4NK3+FlW3SyQ==x-goog-metageneration: 1x-goog-storage-class: STANDARDx-goog-stored-content-encoding: identityx-goog-stored-content-length: 2197785x-guploader-uploadid: ABPtcPoj9rSxsmBEsSFovGGPTGE4Y3E8DlADSMaZiSANbsBlFlk2DfMq029Lt3HMhZHqrDXx7bgx-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodpreport-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MQAozqojrpm1rLWFxgYTGvq3kt4sIL6sV6dzA54UH6oxMYUVc651x9bvmSZORa3%2Fg%2BWT9DllnY6GC%2Bi2dH35hZ313oDVgd9sQExFkKeKqOlvk8ox%2Fn0Gdy6CyCTHR2Nnea22wQ%3D%3D"}],"group":"cf-nel","max_age":604800}nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}set-cookie: __cf_bm=RzthMfxw_acKCf.iGa3FZO9mQP796PAmuZyrAl19x0Y-1716829531-1.0.1.1-Ao0uBlGuK4yfKTTYRk7nMrPbuWb8ftv4gO8H9kZzQ_tfmXMmNr.g93AkfLzsfS4FoM5CzJ4gyHwMPINmQrWLwQ; path=/; expires=Mon, 27-May-24 17:35:31 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None_cfuvid=AgpH45GfPcSAAlMAXQpQAO435I49M.SeE.iSJmw2Lnc-1716829531413-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=Noneserver: cloudflareX-Firefox-Spdy: h2
komxxa3p4.cc/css/app.f273e469.css
![Report - komxxa3p4.cc/invite/ (23) Report - komxxa3p4.cc/invite/ (23)](https://i0.wp.com/urlquery.net/static/images/flags/US.png)
URL GET HTTP/3
komxxa3p4.cc/css/app.f273e469.css
IP
172.67.145.94:443
ASN
#13335 CLOUDFLARENET
Requested by
https://komxxa3p4.cc/invite/
Certificate
IssuerGoogle Trust Services LLC
Subjectkomxxa3p4.cc
Fingerprint30:26:34:71:B6:4E:C4:39:5A:4D:F4:3D:2A:EC:98:B7:28:A2:C1:8D
ValidityThu, 23 May 2024 15:57:54 GMT - Wed, 21 Aug 2024 15:57:53 GMT
File type
ASCII text, with very long lines (14103), with no line terminators
Size
14 kB (14103 bytes)
Hash
55f368916c589c538daf8ebc8407c846
dcfc55f682172b38eb498e5123ba38a48e317eb2
821f56f30285233f0d95005168004116ce5dd392a01a370e3a8ae2631e63d2dc
Detections
Analyzer | Verdict | Alert |
---|---|---|
Quad9 DNS | malicious | Sinkholed |
HTTP Headers
GET /css/app.f273e469.css HTTP/1.1Host: komxxa3p4.ccUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: text/css,*/*;q=0.1Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brDNT: 1Connection: keep-aliveReferer: https://komxxa3p4.cc/invite/Sec-Fetch-Dest: styleSec-Fetch-Mode: no-corsSec-Fetch-Site: same-originPragma: no-cacheCache-Control: no-cache
HTTP/3 200 OKdate: Mon, 27 May 2024 17:05:30 GMTcontent-type: text/css; charset=utf-8last-modified: Mon, 27 May 2024 12:01:08 GMTcache-control: max-age=14400cf-cache-status: HITage: 3374report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZjJABo1kM58rlej9tTKSMZw7Fs5eu67ppwkavj9%2FAYW%2BUxdGCI3s2KGu5vnFqXNieUV8B5KhT4jujHsww12ZCAie5%2F21Ck%2B8tVjIp5odB%2FCks4lFIZcjx6ahhVktVsA%3D"}],"group":"cf-nel","max_age":604800}nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}vary: Accept-Encodingserver: cloudflarecf-ray: 88a797142e8c569f-OSLcontent-encoding: bralt-svc: h3=":443"; ma=86400
b.yzcdn.cn/vant/icon-demo-1126.png
![Report - komxxa3p4.cc/invite/ (25) Report - komxxa3p4.cc/invite/ (25)](https://i0.wp.com/urlquery.net/static/images/flags/SG.png)
URL GET HTTP/2
b.yzcdn.cn/vant/icon-demo-1126.png
IP
154.85.69.53:443
ASN
#139057 LEGEND DYNASTY PTE. LTD.
Requested by
https://komxxa3p4.cc/invite/
Certificate
IssuersslTrus
Subject*.yzcdn.cn
Fingerprint6A:A8:BA:7C:D4:B4:86:0B:74:EB:E6:19:C8:69:2E:8B:13:6C:1E:1B
ValidityThu, 09 Nov 2023 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT
File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
8.9 kB (8886 bytes)
Hash
f87c46f346a5548224ccbe0b6bd75df5
8e8b8bd4ba3e6b6c8557d94a726061fdd62492fd
b6304eb9b754d38d3ad74d0acce42c156536840351368ed3e4895a6b50cd9370
HTTP Headers
GET /vant/icon-demo-1126.png HTTP/1.1Host: b.yzcdn.cnUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0Accept: image/avif,image/webp,*/*Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflate, brDNT: 1Connection: keep-aliveReferer: https://komxxa3p4.cc/Sec-Fetch-Dest: imageSec-Fetch-Mode: no-corsSec-Fetch-Site: cross-sitePragma: no-cacheCache-Control: no-cache
HTTP/2 200 OKdate: Mon, 27 May 2024 17:05:32 GMTcontent-type: image/pngcontent-length: 8886server: openrestyaccept-ranges: bytesaccess-control-allow-origin: *access-control-expose-headers: X-Log, X-Reqidaccess-control-max-age: 2592000cache-control: public, max-age=2592000content-disposition: inline; filename="icon-demo-1126.png"; filename*=utf-8''icon-demo-1126.pngcontent-md5: +HxG80alVIIkzL4La9dd9Q==content-transfer-encoding: binaryetag: "Fo6Li9S6PmtshVfZSnJgYf3WJJL9"last-modified: Mon, 26 Nov 2018 11:08:05 GMTx-reqid: YyIAAAASg9geDiAXx-svr: IOx-qiniu-zone: 0x-log: X-Logx-ser: BC5_dx-lt-yd-zhejiang-huzhou-3-cache-7, BC165_lt-obgp-fujian-xiamen-33-cache-1, BC132_IT-Lombardia-Milan-1-cache-1, BC46_DE-Frankfurt-Frankfurt-11-cache-4x-cache: HIT from BC46_DE-Frankfurt-Frankfurt-11-cache-4(baishan)X-Firefox-Spdy: h2