Report - dgr2.krafton-news.com/

Report Overview

Submitted URL
dgr2.krafton-news.com/
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-03-29 05:20:50
Access
public
Website Title
PUBG MOBILE EVENT
Final URL
dgr2.krafton-news.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
170

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-03-28	957 B	27 kB	104.17.25.14
i.ibb.co	13485	2010-07-20	2018-11-25	2024-03-28	1.4 kB	80 kB	162.19.58.157
dgr2.krafton-news.com	unknown	unknown	No data	No data	39 kB	1.5 MB	188.114.96.1
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-03-29	520 B	16 kB	216.58.207.227
i.postimg.cc	23840	2016-06-11	2018-04-11	2024-03-28	436 B	13 kB	162.19.88.69
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-03-29	913 B	14 kB	142.250.74.106
code.jquery.com	634	2005-12-10	2012-05-21	2024-03-28	416 B	33 kB	151.101.194.137
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-03-29	872 B	61 kB	142.250.74.106
www.pubgmobile.com	21653	unknown	2018-04-27	2024-03-27	2.7 kB	12 kB	95.101.11.144
l.top4top.io	926491	2019-11-19	2020-01-15	2024-03-28	503 B	20 kB	135.181.63.70
a.top4top.io	588496	2019-11-19	2019-12-05	2024-03-26	503 B	18 kB	65.21.235.194
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15	2024-03-29	466 B	32 kB	104.18.10.207

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent
2024-03-28	medium	dgr2.krafton-news.com/	Tencent

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (118)

	URL	Size	First Seen	Last Seen
	unknown	39 B	2024-01-05	2024-04-28
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2024-01-05 16:39:51 Last Seen2024-04-28 17:47:48 Times Seen110 Hash afc22e8e3be45d7aaeb1e024e07858ec 5b581ec2739022a3dc0dd097639836f17ec22bec 35b9e9004d8051dbbe521c55faae29e39e646ca56fa654232359be58e42fc66f Loading...

	unknown	247 B	2024-03-29	2024-03-29
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 06:20:57 Last Seen2024-03-29 06:20:57 Times Seen1 Hash 310a10b47060ab7446d81e0311a73628 fea8c95333e815044441773b22b830a1019d2e16 8940d36b6de1aa88febc8caceccd5e42c6891cbe29198807c40ecf456338af8e Loading...

	dgr2.krafton-news.com/	81 B	2023-08-14	2024-04-26
Pretty URL dgr2.krafton-news.com/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-14 12:40:35 Last Seen2024-04-26 20:14:24 Times Seen107 Hash 6e4e7b74b59e8fb0d5cc5b6878b1257b 906cafd0b72e7ee02cbdbf1bed7d4c33b45d7d20 d12ca570dbc2a31175dac8e301b0e1212bcd5fca4e860720f6fce957cadb5f83 Loading...

	dgr2.krafton-news.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-28
Pretty URL dgr2.krafton-news.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-28 18:40:45 Times Seen55301 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	code.jquery.com/jquery-1.10.2.min.js	93 kB	2023-03-07	2024-04-28
Pretty URL code.jquery.com/jquery-1.10.2.min.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-28 17:47:48 Times Seen10255 Hash 628072e7212db1e8cdacb22b21752cda 0511abe9863c2ea7084efa7e24d1d86c5b3974f1 0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988 Loading...

	dgr2.krafton-news.com/js/international-telephone-input.js	463 kB	2023-10-14	2024-04-28
Pretty URL dgr2.krafton-news.com/js/international-telephone-input.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-14 05:17:14 Last Seen2024-04-28 17:47:48 Times Seen142 Hash 5674ef5a95b8f48ba0a8405d056ba0ce 9991445667304928434eb128a38ab05902c38391 595f1377e816f8f8f50b3cc558c4cf3f4a83a20ac45675b3e558b6aed1d0d42a Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js	84 kB	2023-03-07	2024-04-28
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-28 17:47:48 Times Seen13831 Hash e40ec2161fe7993196f23c8a07346306 afb90752e0a90c24b7f724faca86c5f3d15d1178 874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4 Loading...

	dgr2.krafton-news.com/js/click.js	1.1 kB	2024-01-13	2024-04-17
Pretty URL dgr2.krafton-news.com/js/click.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-13 00:39:20 Last Seen2024-04-17 17:45:58 Times Seen8 Hash 141d2170392ecd9fb0faae9a82957a3a cf384867cdd34452218e2d55155c8f32ae3eecd8 5ca7f9a6d90f60353358aefaa605df272541d91d24e57f201b8180483ee572da Loading...

	dgr2.krafton-news.com/	1.8 kB	2024-03-29	2024-04-17
Pretty URL dgr2.krafton-news.com/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-29 06:20:57 Last Seen2024-04-17 17:45:57 Times Seen4 Hash 10fb01421fb81cc671008ed391504cde fec13e5ed152fc6dd40fb535c3203a6f35e234d8 1b3ee8159b7423df0d5ac96dbdd323ffaec435bb8c520bf76c172ad632807616 Loading...

	dgr2.krafton-news.com/	1.1 kB	2024-03-29	2024-03-29
Pretty URL dgr2.krafton-news.com/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-29 06:20:57 Last Seen2024-03-29 06:20:57 Times Seen1 Hash 9cc63935fe9a21a4cc3d7ef9c643363a d3477e733a65c74997c0acbe9dc05005a041e095 b1712b4a028acd9b7ec66126820abb2583fa1fc798286bc7f78dba112c6b3af5 Loading...

	dgr2.krafton-news.com/js/selowscript.js	4.4 kB	2023-08-16	2024-04-17
Pretty URL dgr2.krafton-news.com/js/selowscript.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-16 13:29:19 Last Seen2024-04-17 17:45:58 Times Seen46 Hash 4353bfc76c6ee7ef72e04a4867ec2375 05977c83356830b9db40ce414bd8c1ef6c89bced 3e7421c9859c8f135e950b22e11271d609dac8302b70762dc2c9496669cb59a9 Loading...

	dgr2.krafton-news.com/js/sliders.js	1.1 kB	2024-03-29	2024-04-17
Pretty URL dgr2.krafton-news.com/js/sliders.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 06:20:57 Last Seen2024-04-17 17:45:58 Times Seen6 Hash 7c0eaa367317385b4a76b7e2c9b47ce7 65a7120dcabc92e4eebe3986f42ba527c2b710d7 638fc73ef8a7dd67388d64daa69ca29968b3e39cc777c907ce9e0505a6bd9494 Loading...

	dgr2.krafton-news.com/js/scriptv1.js	12 kB	2024-02-01	2024-04-17
Pretty URL dgr2.krafton-news.com/js/scriptv1.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-01 16:16:15 Last Seen2024-04-17 17:45:58 Times Seen12 Hash 090885242047dbef3936d6c641e3ac42 00cabf2c4a3efc58dbd9582f0845404f2a35f212 ec48bfdf580d5df11c530c0c1c25ee65bf0362374bc96370faa1f4de08ab14b4 Loading...

	dgr2.krafton-news.com/js/link.js	5.8 kB	2024-03-29	2024-04-17
Pretty URL dgr2.krafton-news.com/js/link.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 06:20:57 Last Seen2024-04-17 17:45:58 Times Seen5 Hash 3cd44ec212e0a845ce27a0c9a5708fa9 20b0275a856159a2c8f924ad95fa5ed97a4bb1b6 32124582e654e4664bccfbb4a64ffd630c6a7f3bdb21f95f721a09beb9c180a7 Loading...

	dgr2.krafton-news.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.8 kB	2024-03-29	2024-03-29
Pretty URL dgr2.krafton-news.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 06:20:57 Last Seen2024-03-29 06:20:59 Times Seen2 Hash b36cbd5b8df1d1180a1c45711d5fbf2f 0b2943bce296155c8b1a6a09626ca334d172d687 a94ab086f044c082131e3886c59530de2c89c4ca106cc30d43594360eee4dea7 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js	84 kB	2023-03-07	2024-04-28
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-28 17:47:48 Times Seen14181 Hash 32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3 Loading...

	dgr2.krafton-news.com/js/slidernotif.js	406 B	2024-03-29	2024-04-17
Pretty URL dgr2.krafton-news.com/js/slidernotif.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 06:20:57 Last Seen2024-04-17 17:45:58 Times Seen5 Hash 6d96d9aaae948eb5db3ae47efeb0ab56 4c5a69eaf3c84f24d6add8c46a54ccaf983ab1d5 fdfe34266fca102bc8f0dfacf8c488c415561ed60cb18f4bad8892c31c9b27cf Loading...

	dgr2.krafton-news.com/js/showHide.js	2.1 kB	2024-02-01	2024-04-19
Pretty URL dgr2.krafton-news.com/js/showHide.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-01 00:55:14 Last Seen2024-04-19 05:44:26 Times Seen16 Hash 81a0dcb749a291c326c676a553f29e0f a528f289c1de800f4a3849eaf629c4f470067043 7638e2a588d8a07f6109e9116876892aa4b6443fe949e7d8822cb1082d5b36ff Loading...

		Size	First Seen	Last Seen
	#1 Write - 892073ca8ede08c4c19af3b85f4738de	18 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:37 Times Seen376 Hash 892073ca8ede08c4c19af3b85f4738de eabe1476df968605084d2546e97ee712e62657b8 ebb8dddc409d0524ba533290ecbe2f1c59ada52063109d097a5617ddd53d514a Loading...

	#2 Write - f647cf4291b3514acb6dfc5903620806	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash f647cf4291b3514acb6dfc5903620806 77b87aa14c8a186cbfa31490eba508307ea1b58c 745aea14ad1731fa076e2e237af3006c8c7a0ed94379ba01dbe3abcd0947efc4 Loading...

	#3 Write - 76329b4f309ad0211bd98453fff68ac5	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:37 Times Seen385 Hash 76329b4f309ad0211bd98453fff68ac5 50bf5e047121af855a3d42a222c9143d86c8d091 b02a058152f38597d83528c997017bb74bf95d4eed4d224883a406a4db4236a6 Loading...

	#4 Write - f82dff41574b0ddcad47c145b0e28050	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen389 Hash f82dff41574b0ddcad47c145b0e28050 a2370f27ed38a5fc1e12ed4711814951c6926b1e db847cb68230ec9117bd8205a6aff20b71d27c3eceace3c765b22f92653cfa83 Loading...

	#5 Write - 57574f53b6de200174d35574df1da053	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:07 Last Seen2024-04-28 17:47:38 Times Seen395 Hash 57574f53b6de200174d35574df1da053 2fb004ca614092eee28fc45611cdeca1d38ad065 c990e04237a0fabc10c638a3340f0af26b4555ddbc373bdf453ff00910afa15f Loading...

	#6 Write - 2411b0302e914ba65e0fa282ccdb294d	18 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen368 Hash 2411b0302e914ba65e0fa282ccdb294d 7665ae057c875df2a3b5627aed7505144d01ca47 dd6dc2cae94ee25ed18e37d5129912d4b59c065c9b4544948d80bd1a090d1f26 Loading...

	#7 Write - b44ff8f68d1f8325df640a60702c18f6	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash b44ff8f68d1f8325df640a60702c18f6 38b8117a575001fb06f9a0ceadc55228ccdce7b3 d6465167999520a23127488c727ed47123218b0418295045e7fcd628039c0b31 Loading...

	#8 Write - 0aaabba7ccc2505b6870a656b6819d3b	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen394 Hash 0aaabba7ccc2505b6870a656b6819d3b 5ee2b0096cb5a7a03db1452893d0f0efbd3f051c f32cced9669187aebe75ba41a8f0d897a27cb02bbcd5dcf0ad6dbfe31cc208a0 Loading...

	#9 Write - 35411849173c3d4db532cb75586fbeda	18 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:37 Times Seen372 Hash 35411849173c3d4db532cb75586fbeda 068c3c37cd989d0b2ac9ba507218914b98f9194f 419a2e337ee37ad5e724a3f328d81af33322d8ccacc12c9e4ce5e4e39fa2e757 Loading...

	#10 Write - a9760db6ce462dc40062b65a940fb027	18 B	2023-03-12	2024-04-28
Pretty Observations First Seen2023-03-12 16:21:53 Last Seen2024-04-28 17:47:37 Times Seen376 Hash a9760db6ce462dc40062b65a940fb027 7d6f111c75e4d5b4b061f8c6c81692883e80fce8 a155a9d1fd9ba999b8a5e384a89513097831bdfcec72082c4b7d8dbc74439af1 Loading...

	#11 Write - b85819574e5970e1d42dbe01ece588e3	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:37 Times Seen377 Hash b85819574e5970e1d42dbe01ece588e3 41f6388934d879255cce5ac579ad8081280437d8 68a074bfbfb0580f9e91dc885af163fc951ece471b3e477e02d8aa4dcd869bf9 Loading...

	#12 Write - 8fc40ad6c73bea5a889fe64e47f00b8f	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:37 Times Seen377 Hash 8fc40ad6c73bea5a889fe64e47f00b8f cbb493e570ab2e501f3932563bb18efdeef3b2d8 499654ba55a697b3ae5283cac5c035e0f9c55e1c887d2c53b8a9097857b65c4d Loading...

	#13 Write - 1381ddde79e03e1767f7819397700163	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen394 Hash 1381ddde79e03e1767f7819397700163 bdc8e80553918ed9d64bf922becac723bd9fb729 9b80a2abb7cef34f34d9c1b5f2ed4154352b8b4b1802b6fa3609b3c9d2b1a458 Loading...

	#14 Write - 6b917a41c9ce27526ca480713e81d2d5	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen370 Hash 6b917a41c9ce27526ca480713e81d2d5 765c462784fa25ea41d89b454897d227b6c9c63d f0a7e368791613d36120e33ac4525e01c01d1c007fb79a454e761f4a95ed0d7a Loading...

	#15 Write - 79c215027f08cd82c529a10402c8b253	18 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen375 Hash 79c215027f08cd82c529a10402c8b253 99e302dfaec95f521c1deee55d07fe431578dfd1 6e6f81dd25c454e564a7dd6db3c735f45dbe63bc45aedfc18d6c63fa82b0934d Loading...

	#16 Write - f878e8bd0445ab90e42c6ff26a714cd5	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen395 Hash f878e8bd0445ab90e42c6ff26a714cd5 cef4addbd9946a09aa2545fea536b580e5aa75bb bd2a6457dcf585698134e31288339b2c83c90bc3efa0207082c16f1947d81698 Loading...

	#17 Write - 8eaf4d081dedfc08c187aba7541c733d	18 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash 8eaf4d081dedfc08c187aba7541c733d 31db4de8047c65cf3f13398fa2a6370d9bf24715 fb1e251f69d755e669e5e0207910977ba8bec923abcd0c264331da8ed4bc5de4 Loading...

	#18 Write - c03b9a1c6d2d1376ab7110b920b5d11d	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash c03b9a1c6d2d1376ab7110b920b5d11d bc7832ff98ec68e189cd59bdac5faaa8cd059747 ee40c4a368f53c7893aff3c16c8ac59dbec639ee5bcce94243e05aff45db1089 Loading...

	#19 Write - 246541b0664433f23212b252305bb32a	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen388 Hash 246541b0664433f23212b252305bb32a 0866efa92eb7f9c75b3a45856a9c7e3310719b7d d056a96cf6d509c9def10b7dd78a46fc7b137713344e804ed849f9766c57ad19 Loading...

	#20 Write - cac42769044d0dbe5b683086ab70007f	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:07 Last Seen2024-04-28 17:47:37 Times Seen396 Hash cac42769044d0dbe5b683086ab70007f 451bc1076e896baf8c00f8c311abbd65f85d50b7 7559e26f738b52c0f790444412c346745de4d13ebb8fcc28884862560cc9519f Loading...

	#21 Write - c063106f27cd1452ae135f642e53eebf	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash c063106f27cd1452ae135f642e53eebf 47a5ba2c254149265ba308a7be7b39924ea90b2a 7ce37963c8c42196e5562cd6f4804e4e7eb5ffb3d9393e0e8404bc55f6113cba Loading...

	#22 Write - b6dc090a79226495e9644bbeee756518	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen395 Hash b6dc090a79226495e9644bbeee756518 449b67436c8785555c781956ba56a454515682bb 8367a78ccb1e3cde37697b3af2f117e317393718fe68e566e6c13ef210dcc66a Loading...

	#23 Write - d04ea7f0b92f18997d7780e97ecc7005	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash d04ea7f0b92f18997d7780e97ecc7005 46147adf20a41b5c1b52c5f72e9204dc76ca23db 360fa8d722755207a3463bfc054ad79c3c49db3d6062f57977f1eba3ce662d58 Loading...

	#24 Write - d376a619d339b30958e60e92b3613146	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen371 Hash d376a619d339b30958e60e92b3613146 28cc836bf9fb7b587bfb4b7159862e2adc8d432e ff4ce15fa895a6743337778c3a010eed23f7ffc99a2c50f64ccfbd6ca4e76dd1 Loading...

	#25 Write - d2708560ddddf9fe2854103ea6095b0e	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen389 Hash d2708560ddddf9fe2854103ea6095b0e 61af9e5b5b5e96580a7da75ebc27c57debb6137b 6d013dfe3b7e6304821534f0802b91d7ecb34e69dc880ef3efecac06a14e8a78 Loading...

	#26 Write - c64569b31d5a228f032c7af0dbbb959e	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash c64569b31d5a228f032c7af0dbbb959e e73d60cace93a0fba385efd2dda2fc91144b857f faff0e661677302655ef41c0fbef9c2a414473eb4fc91717bff201e5d58e311c Loading...

	#27 Write - 3e8af7d0f5e6370da8570b377c888d9c	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash 3e8af7d0f5e6370da8570b377c888d9c c2de01f9d3daa641b9401c4e55770b1a4bac5b4b 8ef50bb1bcd890c39e916c12f6eb9f1db9c08bf1e326342d1cc5ebaa4fe446be Loading...

	#28 Write - 54dadabdb14c173b950fc5ac0647dc61	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen396 Hash 54dadabdb14c173b950fc5ac0647dc61 100c82bb931eedb7fe034bbbbf0c1373cbef348e 1d8d74849c3855d65dcdf22c44407e3b34d34279aff0b991e24c5a08a8f62b07 Loading...

	#29 Write - 7d5854ef579b22b85a1308a464991cbe	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen395 Hash 7d5854ef579b22b85a1308a464991cbe bca2593c39b377d192b5be3d23f73a6acc1ba9dd ee855aef125f82c560259778b792cdeb143dee61b40be24ae78345ba96ab07dd Loading...

	#30 Write - d5d4a03bd7a18c5386526c4809b986be	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen395 Hash d5d4a03bd7a18c5386526c4809b986be cd8ee075dd8b9b45e44a1f294a363189d12c037c c391d5c8f3478b12e350ffe590cc18b8b53b7c0ace33d1ebc9f6a91f227515bf Loading...

	#31 Write - 162f95de2178cea10bf79eb715e4d3b5	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen377 Hash 162f95de2178cea10bf79eb715e4d3b5 0ac1048b6863928b93acc3f91cda49b162326c20 661cc1cfe956c3e47afe43542b0956d36df0967d344be3a5abc13daf7f6f9646 Loading...

	#32 Write - 2407ddb62e965883f20fa23c826bf328	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen396 Hash 2407ddb62e965883f20fa23c826bf328 8870fbad82926b2a51ec8f4d96b0dea661f54d0a 87484b3dbb15f32dfc8952ebd6b9530b83bd03c1693c2c0a870db80921c241a6 Loading...

	#33 Write - ce5b835c74307454b195bc9b87ab25ad	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen395 Hash ce5b835c74307454b195bc9b87ab25ad 6e2a7143cb9d2f1c196ea81fcff842aa7ad2bfd0 2bc85f2a21ff1488d409bb7549110022cdc2274fca518696103e6ea4ee971392 Loading...

	#34 Write - a33748764d90c55aca2d7c5eea289616	18 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:37 Times Seen370 Hash a33748764d90c55aca2d7c5eea289616 5d61e51294395a77b6738e3a7f82be2478f9d801 d6cbf00237a8151746b2ebf6ba332d9f62d6981fc2b717b63e7dc5e70e026c2a Loading...

	#35 Write - 914dadef0120224114573295cd60933c	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash 914dadef0120224114573295cd60933c c4811ce68cfbc54e1eca2c2ba1af8dd6fbced84e c5cbce3172fffe2ca10ef64d85ba4b2ff52cf3989e7ba4a04b3024f50efa5f31 Loading...

	#36 Write - 2ff07b7af9c1223cc816428b9699a077	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen394 Hash 2ff07b7af9c1223cc816428b9699a077 2f7744b74e67feb8b4d37fd68c5b341e657a5d09 947ba6e211b46fd494a831c93774e351a2114a2068306ac8137023a29c22d717 Loading...

	#37 Write - 0d5998c0f8104238cd96cf17a9a2faeb	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen371 Hash 0d5998c0f8104238cd96cf17a9a2faeb 8550a2347fba8b97c74e0b766f099c7610736be7 89543153b3f84846def623cedf6219a84f697be7e8ba4f30d5b9b613c3f2ea4c Loading...

	#38 Write - 596e6606d7c4ede34de2935f3c6c187e	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen395 Hash 596e6606d7c4ede34de2935f3c6c187e d3ea84761e98142b91559b1a922cea287a5a3011 a6171bc58c97c84152bf23c4cd548779070196e84b8ac898f0c3f6c573bb372d Loading...

	#39 Write - 7a2758e340ecd0b98d3fff7299fd1893	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen370 Hash 7a2758e340ecd0b98d3fff7299fd1893 d62c034d608bd0dff30b756d7f4bc19bab964411 967ad897643bf218aad6f18ba7572b8f1ab6d3f577b1dcbcfa82cc9deabedd47 Loading...

	#40 Write - 26b2bc4dfa81b43fe5a91d2c178dd361	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen395 Hash 26b2bc4dfa81b43fe5a91d2c178dd361 fd7919b5dda72e5dc5ff29f39439ed5f6ca81871 8adcf28e1f74b9d284b6a8e7621e79f89ff5bb458dc81d9b366fc51bcb75f28b Loading...

	#41 Write - 54fa6a1a732804cb2eb71846c1c88c85	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen395 Hash 54fa6a1a732804cb2eb71846c1c88c85 ac48a7381ce0cea53de9797bff9ee3d827e1c50b 28776dcbc8585ccfedc6125ab43dabb41c1733e77220bddc30365376adf9de4f Loading...

	#42 Write - 3b7cb9e898b2368382615803a65c75d3	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:07 Last Seen2024-04-28 17:47:38 Times Seen391 Hash 3b7cb9e898b2368382615803a65c75d3 60fa902993681d254fde4c6066be68db74de2ed3 38dfdd15caf30f9899d49a6422b73018cb552f873de5dce24d1c2bd01a72c888 Loading...

	#43 Write - 729409264fc1bf2874651a3c16ed3ac1	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen396 Hash 729409264fc1bf2874651a3c16ed3ac1 744d4edbcb9de5287abd15da414ac712e4ba7dfd 63370806c302182c42c242c16817f18c7d204507c31a32957a241323a667b93f Loading...

	#44 Write - fb95a63e798bbc1c52b2f422cfe52052	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash fb95a63e798bbc1c52b2f422cfe52052 03786e47acce519416eaea6350a4488f36ef2edd 383ca780d1ed19d7c3b4a02d2b928ef255554880c51ee3317b58974bb7ba453f Loading...

	#45 Write - f2f9eb963a5bc112561501b10eb9f688	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen396 Hash f2f9eb963a5bc112561501b10eb9f688 e7be8ffd6bdc4082a2c86b83940f291ddee8cb9e eb6d59fae5702df6e19944401b185d631f495acc6a1b27707bc524e4a26d3768 Loading...

	#46 Write - af42124fb23866e29287836fff6d3896	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen394 Hash af42124fb23866e29287836fff6d3896 8417cd2acf7b2fb483102d54c5238f91da85deb9 1f0008a619fdf98128a6bd9c386f8f8b41254adcfec1a1195d46009568c67b63 Loading...

	#47 Write - fcf74b4a77f8a18258dfe246846fd85d	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen396 Hash fcf74b4a77f8a18258dfe246846fd85d 4c9f24c70f5d69ff80690a78e47f62c2ef9b8fff 7a519afdf92bd1373c0aa3900c6c455811f624a070d68cccf5da124e6579f54c Loading...

	#48 Write - 1fdff8c34626da4017aff0a2821d8b13	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen395 Hash 1fdff8c34626da4017aff0a2821d8b13 55f2cd64499c15d5984aab9866dd55d365ccef23 b3dff5aa27eafabdaad74a18cff6b5fe4c1d8f3772ecf27d7f97a929cb88de33 Loading...

	#49 Write - 3c1546a94da3620e4978e2a646044824	18 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen375 Hash 3c1546a94da3620e4978e2a646044824 5308f928d39eb12a2d72472adb2be17ff63165df a00fa4d73a796073d56091271d0bccb0259527e76ab4a4174a145c41b4bf8059 Loading...

	#50 Write - 08981acc0dd5c00d58e592297ed2f12d	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen395 Hash 08981acc0dd5c00d58e592297ed2f12d 6d917c2adac56ad56decf665139db8643f8713ac 3e305db42daec26a98e6e0cf1a29a7c956a323a6ed1b0304409a505ebc7c5e1f Loading...

	#51 Write - 3e0783099007df1ed28a11c3e447ea74	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen395 Hash 3e0783099007df1ed28a11c3e447ea74 01fa4d2d862c8d4cec527823cea2028de9928c5f afbd1461a80f657118dc4824a30e2604804026fabfcbe6ca2ab93458a53e8a82 Loading...

	#52 Write - dbca3d0c2e30aec4bb8135129e26071e	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash dbca3d0c2e30aec4bb8135129e26071e c9e1cfe63d9ca153308d08d009b38f5281ac9073 39e9000d8bf5dab29600ed51f277c601b33e2950a545e583542b9bd68cb9b1da Loading...

	#53 Write - f24fb692080af454ea0130ae04dc8273	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen371 Hash f24fb692080af454ea0130ae04dc8273 a434de2f9c55719a8bd7eebabfad3ba9d74f0395 e7e4e3b9731b5f668a1bf28080a2908caa3c2c2e811ef8cdbb762c7fd226296f Loading...

	#54 Write - f7aae66ae2b52b128d01fd1b35e33453	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen395 Hash f7aae66ae2b52b128d01fd1b35e33453 52b74544712d5ff9de4b1a5305f5a7a388ab6346 519ac6acbff2bfb0f62eeec8219821a845f2cd063737b2aef9d4f2384fa6f733 Loading...

	#55 Write - 709dcd1b74993ea1d86ef30bbe75bda5	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen395 Hash 709dcd1b74993ea1d86ef30bbe75bda5 49c6ebfdbff7a45a3af735dba2494fd9ab107b17 4ad9deee352fba0870bc0b6f55370cf953f8a042e00c7ccbd3bceb16592f4df7 Loading...

	#56 Write - c2274bf4d3d8c56c24099c9c6c922129	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen396 Hash c2274bf4d3d8c56c24099c9c6c922129 f9ca14e62356c3d1ac19c1cfbaf96bd721bcafd9 da55c710a4bfa6102e7212e9685e1e6ca6072de478b9b5a4ef73fb629043b9f2 Loading...

	#57 Write - 2f5270701fdc3701859bc4c4c050d9ee	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash 2f5270701fdc3701859bc4c4c050d9ee 709cb0666d8c2d6ac55bf7c6cdd5fdf10f3b08f6 61c8f97e4290c1b6e5cad7f1dc88316ceff39ae9f8c6473c8868ea010875ff11 Loading...

	#58 Write - 6a0f475b9036eaf5ed81b8fbd3723157	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash 6a0f475b9036eaf5ed81b8fbd3723157 ca0eec508471941b33160812e50112521f27f317 f552df46f9705f908d8c238fa31da2a9343a706c85c0d9e318b0f1ff3b82fc9f Loading...

	#59 Write - 104eaaec377fb78d0b1478984f38f3d3	19 B	2023-03-12	2024-04-28
Pretty Observations First Seen2023-03-12 16:21:53 Last Seen2024-04-28 17:47:38 Times Seen385 Hash 104eaaec377fb78d0b1478984f38f3d3 cc4f020560b23626807ca4c76f343b81602c2d1c 72e9c6362d28cbf9388242bcbf0459073706e7893281cdf07d314bcec18b69ee Loading...

	#60 Write - a1c6b372448acd4925b2d6d2ec1a69fd	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen371 Hash a1c6b372448acd4925b2d6d2ec1a69fd 93d1d5fade913b71328130aa3bf7e11621dd7620 a47fb74d2df6ec243a96b3afb0a02569398d11e82a11d77acd303fe9c2ac83e4 Loading...

	#61 Write - 680fb8d8d22989bb18183258dcdf9f56	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen394 Hash 680fb8d8d22989bb18183258dcdf9f56 57474cf81ab39e5b093493d0c35d048cbf466fb2 2e2f7a853d7480bd50d7021551e427eadcf5e7814f07eaa47ee2542835a512c3 Loading...

	#62 Write - db0a49341fdf4c15231eac4c984768eb	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:07 Last Seen2024-04-28 17:47:37 Times Seen396 Hash db0a49341fdf4c15231eac4c984768eb 7f672147079f45765be2a5aa1259520ac55d5187 a096d07cb4eb3f9b68c17cb876dbc2e067c1092e38dbe84704fc00b1112b5530 Loading...

	#63 Write - f81a8aa27ad547b620591c871a087e2d	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen395 Hash f81a8aa27ad547b620591c871a087e2d 77daa19609f08762d1e7544cc63e0feb2200ddc7 6f75db5c15ff88f889f6ad98cf6ce1a0aef119df1777de1b1a992fa0798fa077 Loading...

	#64 Write - 647fb2e887881e7a43e38681c7fccfff	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:37 Times Seen375 Hash 647fb2e887881e7a43e38681c7fccfff 3aafaaa41604b57786f6c68f552b18ddbcc2e3a0 bd46d9f7163328d6cfe6f1ffe092d73d4bf31a10b7c13afbbee0819760113b4e Loading...

	#65 Write - 5d2dc822e8d4f0b306ca69e54950679d	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen386 Hash 5d2dc822e8d4f0b306ca69e54950679d ec5cf0bb110d219d7e4bda5d14c0071c703cafd7 374f328ec9257ea51783a844612b0d075cc7ecc70805534c0224f44adda5e069 Loading...

	#66 Write - d3b57cc7a3f68972d1d815b2b7c9d262	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash d3b57cc7a3f68972d1d815b2b7c9d262 d753b0fa88877e503d25cb2d4f84a46b742ea90d faf7526df94ba09d8201c854b3605295bd6c991b47bf736166a418e3f86ddf7d Loading...

	#67 Write - 569cbaa5d4e07d93d0ef40f00325dd8a	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen395 Hash 569cbaa5d4e07d93d0ef40f00325dd8a d53d3ccf37eb01c61ab82418727c25fb284eb205 c2a331c02c1ee796f08d7178d991fbaf91961275a5cf9986035d61a484fad97e Loading...

	#68 Write - f2bafedfaadb0f2669dd99db32cfaec2	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash f2bafedfaadb0f2669dd99db32cfaec2 26952b7bb4226705e8f86f7f191ff4e5a5f8ecff 3d7208cc324b7fd6b0e4582c2b82b92314b1d40f918f7cffef7054ff38888eff Loading...

	#69 Write - ada9a1753b25fc846f70be907672be67	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash ada9a1753b25fc846f70be907672be67 62284959825518893b665ebea6b031ef55df7f80 8e135684ca301e393371d1b6ecd56ae0e4012f5385a482770053ccea41476ccb Loading...

	#70 Write - ce67180f52a4e213b02a73de699ac9d7	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen387 Hash ce67180f52a4e213b02a73de699ac9d7 406af3ae3db036d5e0a52bced3aa8502371a4cf2 49b4dfb6858a942ac006505cb2511424617ae6f26d173aa2363f1128e32bb503 Loading...

	#71 Write - 9268bb720f57b661570d77717fb1cf8f	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:07 Last Seen2024-04-28 17:47:38 Times Seen394 Hash 9268bb720f57b661570d77717fb1cf8f b9a950fd874919ed5bb11d31b42cc036b1984ae1 e4d50938965686c89329c9f3f0f7b67f9d183ac06da98664125994353784e4ed Loading...

	#72 Write - da8268b7f06713dcb4a225ed4352c5b7	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen395 Hash da8268b7f06713dcb4a225ed4352c5b7 64e26d66dbc71a35e56b995b7ed2952cd4416698 4565f77725f2acb3bb1ddbd1a8154d6156bf0d399bc87dd62e22e5bd836468ad Loading...

	#73 Write - 2ae35f56a615f14d8728c7874404207c	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash 2ae35f56a615f14d8728c7874404207c b41cbe47fbc97c9f18d854d5209e0871beb5237d a6effe7a48b7aaf9b0f0efb65395e3f6a3a0f74703508a1190c62eada4a95ba0 Loading...

	#74 Write - e4c7a3c9e72ec837c02a88cbf6b7a80b	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen371 Hash e4c7a3c9e72ec837c02a88cbf6b7a80b 0444c709587d095566e6bebb1d03c22291bd0784 dcc572e88b89cf5f1e285e3ecdf898574e421fcdc7edb5e215a334161e7a23eb Loading...

	#75 Write - 7b777c8258be4d66daa963d0851338d0	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen395 Hash 7b777c8258be4d66daa963d0851338d0 7d3e13bc46e3ff6b2d1365e2c51b943b6b250f5b 690824b051f1ae8815e995f91232422bdb859066dc36605eb3d5cfacf604c908 Loading...

	#76 Write - 3881d0ce03d76f22df4ba5ad7b17e61b	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen394 Hash 3881d0ce03d76f22df4ba5ad7b17e61b 344a651785ec5e4e5ca05d468aece729e927533a b14632ce7eeab46e72d4414f3ea594402c906d09dfba025f62ef714681b8008d Loading...

	#77 Write - d29638340b860a0169f2c6cbc8dc9e94	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash d29638340b860a0169f2c6cbc8dc9e94 2dda54c8164c7e88101cc3f8af0464102035e38b 21049af0b39201d5e0689734e95ddfa2a20244afeabcbea8cd9fc4de8c8bfef9 Loading...

	#78 Write - 160edc8db45d8cf1db6b306e01b1b522	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash 160edc8db45d8cf1db6b306e01b1b522 eb3cc2404ff47a884d1b38f4e5570e992c2b28c1 5c4db52d774d189e67be581f8cf0a1be27580d903ac882f6dc8fcdbca5d4dc89 Loading...

	#79 Write - 22e39ae49f7a49a8c6ac9e9a426a64fd	18 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:37 Times Seen363 Hash 22e39ae49f7a49a8c6ac9e9a426a64fd 73706b4bf4bb0e76c3bf8edb7852f248d4e5e91b 08d0469b8cafe434d317480ce41859356a91804de4d8fd6243a7068d7d926524 Loading...

	#80 Write - f5cab08d58af1c86a04a9231f211264f	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash f5cab08d58af1c86a04a9231f211264f f2d69d788b83bd5ae40c26941d0c498b2fffd6aa f17b1d59157c1da10c25ba260aee32275310e2af951352611a5d40acee244cd0 Loading...

	#81 Write - 8dc6baddfb887c207f2cfc80a440e097	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen394 Hash 8dc6baddfb887c207f2cfc80a440e097 c44cdd6dd814762e2d52f58f72f09249aadf60c1 7f97e2f5d8ac6458a314d609681f35979521288e3a0f2950cbabb8f0c0cad0c3 Loading...

	#82 Write - f5799f97dd01d1b506b6c56d11b4b3ab	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash f5799f97dd01d1b506b6c56d11b4b3ab 24baa553dfea4ee7eea29c33ba5b62c8da6e62bc be90525374346d2f86a64dd1b13c775c34e9f7ed52f78543c308590d29336f24 Loading...

	#83 Write - b1b8a68909e47131052789e18ed991c5	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen396 Hash b1b8a68909e47131052789e18ed991c5 bcd0f3c9cfceb4a62dfddb168f3547b0ff706374 8476c02876aea613cda596f888e3e454d1aad05d221a3d45f3a60ae9393ed319 Loading...

	#84 Write - 4999933195d7474661a7588a5ceea991	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen394 Hash 4999933195d7474661a7588a5ceea991 a10e2435d00ff565b423650e231fc3a7ab060671 0bd8d756a5a5967d29f7675f3cdada4a6b19f54af7e23e9b62fdb386b325d74e Loading...

	#85 Write - 249ee03bf7db43c6f29e76ba6404b78d	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash 249ee03bf7db43c6f29e76ba6404b78d 9b4125a177d266bfc1519b6335a3fbda4d67c5cd 3956d7cb31e362559ca075d5528bec5005aee524c51a9f77cd9455d3f41615a9 Loading...

	#86 Write - 37964c4d9cce527dcb1ac8b7c24a3786	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:37 Times Seen376 Hash 37964c4d9cce527dcb1ac8b7c24a3786 5338666ec585469c5b572b68d3927bcca80fce09 9fc0e0126edd39b42528d8f8851ffb1275b8cb9db15548041fab20c581d1b070 Loading...

	#87 Write - cdcc8499dec336fe655502037873ad09	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash cdcc8499dec336fe655502037873ad09 df29230c72cec47be7797309e7f4dd868b430a32 4b74080433c7e1e2cc034124f3f5acb444b95bd320d9ef3827db207b92214e6d Loading...

	#88 Write - e517ae48d6a82cefa2de65e88b6f5693	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash e517ae48d6a82cefa2de65e88b6f5693 ca25ce518f711726cb813ee73efcddd79211e1e0 169ebb8cf7ebcc8b8340edea912177a118a79c22c031852b1d412cffd13500a0 Loading...

	#89 Write - 1f0abd9d8e8190ccb8b56268b03eb97a	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen395 Hash 1f0abd9d8e8190ccb8b56268b03eb97a 852e909d6d20f5672428502ba0541fad7f0ee2c1 a14c6fff6bca9d195ec25fe83830d69768fdb69b0fd1488e29cc7ba00ca04755 Loading...

	#90 Write - c27e5c2ed7c9bc021cf46027c8d241a2	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen394 Hash c27e5c2ed7c9bc021cf46027c8d241a2 251315bfd44456a07441481d1c9b3fc811f4aa3a 0870b6fdcbe4700c7e9c7c316ad592e0dd191f78b472267d3946db8a8ecc8f21 Loading...

	#91 Write - fccb11dde8a7d3a197ba6dc22fbb231d	20 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen393 Hash fccb11dde8a7d3a197ba6dc22fbb231d c86b853f11220a14d0a667bbe08be97d18679fcc f37b4e527dba46d6e9ebf512a36a060780533a164c538b67a259910b79d96125 Loading...

	#92 Write - 6a1cc42d9ecc09ad04c6b7f1ed9b6f7c	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash 6a1cc42d9ecc09ad04c6b7f1ed9b6f7c 0addfe6c569b463fc78a85f1a000f46141678101 06f04bb101ca5086aa7cc8625be865598db47cfeadd30fc16d8198aeb100cfff Loading...

	#93 Write - 2eabd15d7fb48764ad68da88149d6155	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash 2eabd15d7fb48764ad68da88149d6155 d8a3fe7e022a7625954db8a68c259d8195898051 7cd8d5733848900383d3a6998886c7cdfd5a57eaa280c916d7c39c84c91faa3a Loading...

	#94 Write - d90560affe7012b8f8e4cbf45b4ca9ce	19 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 13:51:20 Last Seen2024-04-28 17:47:38 Times Seen376 Hash d90560affe7012b8f8e4cbf45b4ca9ce 6cf02cda967c64f7b85bcfde72f88c7c53623f38 0a0204c41ed0bf5389f077f49cfda3e0acbd1a5941414f8c0fc74ee91aa81581 Loading...

	#95 Write - 4faba762a8b0eeda162b204eacb9c3af	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash 4faba762a8b0eeda162b204eacb9c3af 9b9ccf92f9811df1df8ea6d9d4cd650f8719d23c 67a750f06cb8461db3c08f09cd4cb51932b8f99be5afc6e97b094be20ff17b45 Loading...

	#96 Write - c57e69dc1c3714796fe1663d7f6a758e	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen395 Hash c57e69dc1c3714796fe1663d7f6a758e 103d84e469f09107059d8a67f615cf2e20652664 eebd48c89f0b43036acec1a4db2909eeb314c5076bacaa6ac8bf9f4921a50ece Loading...

	#97 Write - d8e70e433e262e3409d713393b5055de	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen370 Hash d8e70e433e262e3409d713393b5055de 279d1b9c1b4f513b80d1b5abe34e691269a5642c a4627a0619402e40b332d3152fcb46564ee28df15bb24963393da28364090d20 Loading...

	#98 Write - 3a3037c3b96ff0a3193bca0e7f88aadc	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen394 Hash 3a3037c3b96ff0a3193bca0e7f88aadc 76a57d086b2730b9f8ed53d9d436cec27afd6f25 427baae29ffa2912b54f3efe7289d6feb962258dab66f3e66fe7f97a74c05781 Loading...

	#99 Write - b463a44051f5ec20ae48196f36054e13	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:38 Times Seen396 Hash b463a44051f5ec20ae48196f36054e13 5b732f6e972167e618e38cdcdf292c5a63dca9d3 87da72b460eea48a4375dcf38b3192896a661cd64ec1465b856b81538f7e3918 Loading...

	#100 Write - 53c240fa6885652da29ddaf4dbf8c505	19 B	2023-04-22	2024-04-28
Pretty Observations First Seen2023-04-22 10:34:06 Last Seen2024-04-28 17:47:37 Times Seen396 Hash 53c240fa6885652da29ddaf4dbf8c505 ed8d6bbc962db63b8e7c34225a0f0698ba2119d1 35567e82ee7df5a7386f8ca0a1e6b1e67b0a2e3522bc94ddd21829e6711a240e Loading...

HTTP Transactions (106)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css

104.17.25.14

200 OK

19 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (52276)
Size
19 kB (18778 bytes)
Hash
5222e06b77a1692fa2520a219840e6be
8b4236206a8b86af3761a244277663046d7ff7ee
0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5

HTTP Headers

GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 713723
expires: Wed, 19 Mar 2025 05:20:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b3EgLl%2FizlMJPpPQU6zf0RuIYvGy%2FAkyl8IlK63jnxMOBnyfTjh8Nu71L7vS2CLAWfgmCSoiyFh1cODfCfqH%2FZEUeS4r7KOM%2BaWFFNP2LCJMBkUOHb317p%2BmHYDFp011%2F5aww%2Fna"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bd6913c8edb4f9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css

104.17.25.14

200 OK

5.8 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
5.8 kB (5845 bytes)
Hash
e9365fe85b7e4db79a87015e52c3db6c
2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9
dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56

HTTP Headers

GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 552972
expires: Wed, 19 Mar 2025 05:20:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FSXgPU%2FJ98d%2FwDyvn%2FhsiMCWqJT9UKYkksHiT2fUfoMg%2F9iCIb7WuHbL0XnUJ2roxHH%2BPkAoqSrtjMw8XQ0H3K3UGWkGPDiAeGx6fb2Cwvexdi9KH2hqR7PczfVsLjCd5GqRIR9s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bd6913d8efb4f9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/jquery-1.10.2.min.js

151.101.194.137

200 OK

33 kB

URL GET HTTP/2
code.jquery.com/jquery-1.10.2.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32072)
Size
33 kB (32788 bytes)
Hash
628072e7212db1e8cdacb22b21752cda
0511abe9863c2ea7084efa7e24d1d86c5b3974f1
0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988

HTTP Headers

GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-16bb3"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 29 Mar 2024 05:20:23 GMT
age: 16889017
x-served-by: cache-lga13622-LGA, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 1, 17899
x-timer: S1711689624.708115,VS0,VE0
vary: Accept-Encoding
content-length: 32788
X-Firefox-Spdy: h2

i.ibb.co/PYpHF6b/Twitter-Show-Password.png

162.19.58.157

200 OK

28 kB

URL GET HTTP/2
i.ibb.co/PYpHF6b/Twitter-Show-Password.png
IP
162.19.58.157:443
ASN
#16276 OVH SAS

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 656 x 656, 8-bit/color RGBA, non-interlaced
Size
28 kB (28355 bytes)
Hash
2fd203703821d5ce5d18bee2a51b779a
a78d7b1369ce8bc34de57909af142043cae446f0
6b82611fa96f118128b0db9692dd982ca0fe79b1b4d8048946880600cc4f97c8

HTTP Headers

GET /PYpHF6b/Twitter-Show-Password.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 28355
last-modified: Tue, 17 Jan 2023 04:04:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/rkwGGNP/priv-laz.png

162.19.58.157

200 OK

22 kB

URL GET HTTP/2
i.ibb.co/rkwGGNP/priv-laz.png
IP
162.19.58.157:443
ASN
#16276 OVH SAS

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 640 x 27, 8-bit/color RGBA, non-interlaced
Size
22 kB (22526 bytes)
Hash
1614c76ad387e039ab30176fb0911394
1c8a3e0a559cfd25924765beb7c8cbd02a72876c
f41959ed9be5b73b31b0f1b11b818bd02345e42a394e53f6dabd92715c0abbd8

HTTP Headers

GET /rkwGGNP/priv-laz.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 22526
last-modified: Sat, 14 Oct 2023 17:39:12 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/pZDr8sd/Twitter-Hide-Password.png

162.19.58.157

200 OK

28 kB

URL GET HTTP/2
i.ibb.co/pZDr8sd/Twitter-Hide-Password.png
IP
162.19.58.157:443
ASN
#16276 OVH SAS

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT

File type
PNG image data, 656 x 656, 8-bit/color RGBA, non-interlaced
Size
28 kB (28029 bytes)
Hash
8d1f08b46884df302bf7300fc234832c
5735d57b6fa211c400d439095d5ff2f5bb57e691
e4cff1f68b85c3343554090b3479273a54e5eed2dbb3e56ceb9f86c4ebe8b0e7

HTTP Headers

GET /pZDr8sd/Twitter-Hide-Password.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 28029
last-modified: Tue, 17 Jan 2023 04:04:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

dgr2.krafton-news.com/img/rewards/@8.png

188.114.96.1

200 OK

10 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@8.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
10 kB (10324 bytes)
Hash
03bc86d79c23cfeea51b2b8eda23c7dc
61e93587af2366ffbb738e584b002d3ee3fa4ca2
4b3ddf3934ef8436c8fdebff20f5d11e9047b648e2aa7b3780c690177f7e1273

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@8.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 10324
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YecvSgTbSsZfy8V1glqLMGQZZrOr2aeeFlW90yDVC7a%2FIaHeVlbkB6VHxSqkcIPK9R%2FVPbteCt6Iqmh%2Fzv%2Fo9S5zKMHa9hGa5zArY3b%2BjYnaYOp8xEOkaOp4wZIla9vvCW7ebidi0zA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add65693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@9.png

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@9.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
12 kB (11655 bytes)
Hash
2bf71442e31519b8f152711285621837
c06b0f9d2039b3e3f4c5ce0333f6373d21c4fcc6
ecf9461f4dd7d6ad7ed59f142eb998ebd644cd36e8616a1f02e2320906545a77

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@9.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 11655
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hbP9FGvK1Xv%2FYeMFBvg9Aq8SY1x%2B9QdYN5TWV6LU33iePvg8zSGe5RBArDdkes5hRQxi2PJHJQNIt9HiQkcqXWmBRMBGa9x%2BT%2FYNQyOLlhuLDCLVkd6cD9%2FG%2FkZh8oF4ytY7%2F%2F8ySRA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add75693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@5.png

188.114.96.1

200 OK

6.3 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@5.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
6.3 kB (6265 bytes)
Hash
3b423d4ef92ad6d2bfcc3e1529a2824f
8dbcc17e4e128971295da0a1873db7c08bb6c248
02562d24546c25d6f7264a8d0109de0027d32ec853ceb9990fd8a2623f619bdd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@5.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 6265
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2O9Ev7arzcYAmo%2Bez%2B7NOraBKurZduZ7GFn3Xn8E2ay%2BnpuhVnKmb3RsHaU3xRIwgawf6pjj0A%2B0oNEuCOl9DyKdmFmGZzrpqqtQRDak4chVVXRz2skOq7f3KU6JVXiiDNAm08zzJbs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add35693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@12.png

188.114.96.1

200 OK

9.1 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@12.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
9.1 kB (9149 bytes)
Hash
101c24571acf810800605eed4acf1bea
8b66eb1221242853c02933ea892dfe0972018d44
34b8516a5f4c24ce8f10bece77c68aee55c68e4fdac793c207c4cc354efaa2b4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@12.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 9149
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mOu0YMnsYkPfanlGX4L%2BRa9cGqfnuu1LhuXISjOKsOJ9LP2lor1Zw1hNA96byD0nY71MMC25WSbrYatWWE%2Bj91hz6pp3ClyiCpuiU7V3AMZvcumRBDiMVyleguP2U98LUgfltQZ0pyo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bdda5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@14.png

188.114.96.1

200 OK

5.5 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@14.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
5.5 kB (5492 bytes)
Hash
9ea310ab15ba84c0e054b254b81c11c1
bf56d2ab904e04ff6576539e6d7fb9647fa692e8
0c1297b97baf1f0339362891f3a05be6d499fcd16fcacb31a4caa684d2d4ac83

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@14.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 5492
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pd1t%2B6op6fih0alIEXZqhJzcxIdrMPwuzVg7NxmbIU7UMS8iN4acR4CuJYF0wLvZmqvq2n0HIYeEJsF%2BiTnBOXKVOJv8OMrD7pMJ4RQybLKINKZv2VM5dryj7VSyZ%2BsE4nzbAhr81zA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bddc5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@6.png

188.114.96.1

200 OK

6.5 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@6.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
6.5 kB (6472 bytes)
Hash
d902ff925e16b2877488d4496ffe4fbc
5b5270fc2b129bca24fcc7627d577b3062e75aae
0336a2f488beb40037f7d4961674b55d081815c9455ba9026718035b438f2801

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@6.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 6472
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RJc9oGbdaGs%2F1IifSTsobbm8OgCXo1fRPoCjuqWNnyBVkm298nk6Wg5sVhi6JPJafm2M1%2FgJdogjPjogHOQ%2FssA4qCTcfnomMiL14xtOwq%2BDvGhikr7oszp0lOHgAEZfQn%2F%2FNwcnxi0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add45693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/footer-socmed-6.png

188.114.96.1

200 OK

1.3 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/footer-socmed-6.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 184 x 140, 8-bit colormap, non-interlaced
Size
1.3 kB (1335 bytes)
Hash
1700e2a7e8f71b522591ba0c621c0d59
6d15ce633979efdc98c0bd756626a1b5453dff7b
dcf3f1273924bc3c6ee68ede1ebf3da0b49163fa60742b7c4045cd298a3596a4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/footer-socmed-6.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 1335
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8DJaX22F43GGaNeuA0CHUpnQ6N3p4qePTZe0s1DrmKi2iVaD%2F03ZhCVQfvonJ5xfozBKI5T19CPkjlzd%2B%2BreGlnuwewEm54Gbzwv7WpcT7wZz6Ts1YGCKK5kEtJQuYLGOlWBoZzRoeQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdee5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/footer-socmed-1.png

188.114.96.1

200 OK

268 B

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/footer-socmed-1.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 50 x 50, 8-bit colormap, non-interlaced
Size
268 B (268 bytes)
Hash
adbd18e84262ab084bd3df2dfd4bab1f
36977069dd06949eff7dde3aad14c4801e44d324
20b7d3871d1a6ad6187e20a6c5f8a27b347e0060bc016e882026a55d0b0cff60

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/footer-socmed-1.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 268
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c1mgaI1yIRyjNKF6xWRKVGKPvEUq7Jn96eAagAwVu0aIz3%2B9LMmuU6vkODsvNjoVsBOJ5iT5CkX9EYww4iSuyhpKDosSxYKErkCLdqiM5a6bUropjcJk0uj97KKHthAPIeTWVfx8oCI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bde85693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/close.png

188.114.96.1

200 OK

1.8 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/close.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
1.8 kB (1812 bytes)
Hash
ff9eb1146bcb3dbfbf16220d0231c996
89622c66b5a76a76e46973573f3229dc006cb516
4a34729b7987ae81a36dc378c7928ee1fe9514e5be8729836170524cdcef9936

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/close.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 1812
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:19:08 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yjwwolGz9ichSQxIOJGvUW3TvEvZVronsx7X36rDQ7DWnuSqiFoEo3wTWAaUW41%2BnNnWdVrNOdKAOp%2F%2BaaoZgYZQNwl88UDe2KmczcpXUARZ8PyjtDELq%2BtYIfxlwXjdblPTgEvz35E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf15693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/footer-socmed-2.png

188.114.96.1

200 OK

461 B

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/footer-socmed-2.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 51 x 42, 8-bit colormap, non-interlaced
Size
461 B (461 bytes)
Hash
b5448202d3c938d562e54f56b17d0fca
db8d27e773905767adcf0415e91626d3c43fbd31
85114b53d0a02d02821cf1a4995af771fa250e9e3f1db1084813b8488bf73be7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/footer-socmed-2.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 461
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cN3MxkDXRiqfReKnzczp%2ByUU%2FiA9LZQ%2Fgm0Sb89QQYXORt5o1tyfEob8EZc176E0sAWWNM4qxtfhMqFHjQH%2Bxq4nl%2Fr%2FYwZDYCqg%2BcZj%2BWMuMoNSzkQNrhFnU%2BvtDbPsM5cCykkZ6Ks%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bde95693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/footer.png

188.114.96.1

200 OK

11 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/footer.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 1280 x 189, 8-bit colormap, non-interlaced
Size
11 kB (11417 bytes)
Hash
32889c5fbf8cec8faa42790909ea87fc
e488378d68cf7e3ece34af65dd8304af28d03b25
84da6c65dc61e0e1cdbf7c6b5907587735506c60ee57e3e4c6ef0e4db01ff121

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/footer.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 11417
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QNpPl%2F0UtZhjS7H3GGpgs5fMFI9UbE6tAULEfwZYfXdrAKgDvnOTesvf712cZLxRLcs%2BSHHm9Q3fqyS2pvtLT14iP%2Fj7ceLcWeKAuyjqvmSzml2nAr%2FiRZLuMgX28bJJkxnUmryluRg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdef5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/alert.png

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/alert.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 86 x 86, 8-bit colormap, non-interlaced
Size
1.4 kB (1364 bytes)
Hash
327ea64535eee3e1f15928af0dd777f1
801ad514b63320f1ff3f67639541dd8f6b183ee3
216f255489742dd9f579864a0938683a065dc2921d5c12ba30752b953e2929d8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/alert.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 1364
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Thu, 04 Jan 2024 17:35:40 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5XmiydkwTHEd6MHXnRlwWW5qAT95Bi3wet5I3TQHGW1%2BjHB920Vc4bcvztIs%2F%2BgsUv%2Fv%2FCGMKoCtusER8iAc0yLxpa4MdUmwAGVsSCAcVdioA3T9Vkz9CHthnGewt5Zxyn0obemnimE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf85693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@16.png

188.114.96.1

200 OK

8.4 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@16.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
8.4 kB (8437 bytes)
Hash
fdd5e9b3177685ceb032fd31d5f084b1
df7aa1ad78c957c3925e5ee0b429676462033785
77c4de10d8b46f8058e121ad9e35b753e3a281fb89dbf74cb62958ce6619a388

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@16.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 8437
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:24 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o2UwvpqP%2FrGCO%2BHlF5ltIMAckiAml8IgrGRmoL3jiHsNQ5EMvoeiNKNt3jB4kiUxiwovFscnJ97cX65ImoazcWfv4w0JxN4a9QbgGWX90gmFaadqYTboKnCX680Ci02QMBKs0taaQOQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bde05693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@11.png

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@11.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
12 kB (12288 bytes)
Hash
29fc9c18fa89b42f7fab5d4b32f04524
2bec99b44b984b42d2420f71295199a4d90ef34b
5ff6dd5ef05ecefc148dc067df0809ba9e97e714d0188b4ad350009687bc767e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@11.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 12288
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kBNyHEC%2BhO%2B63eQeirLFIjY04sryKltnRU78ga%2BeZRvVMJSwv3NuV%2BKU6PJ9IFcKFu7U7Eq7LKX7SJ%2FwYMkocWNpd%2FSo3Ffnd19CawyA7lSRz%2Bv2JftO0uUcFnTUOHa2%2BPSHL%2FOBRHw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add95693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@18.png

188.114.96.1

200 OK

4.6 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@18.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
4.6 kB (4553 bytes)
Hash
87a7c28c23927dc93fcbded6be9e4ec1
16ba2595e9259b8e5c7ce96a240ffe7f04beda6d
cca4bca902ead08e55a432bedc9b0d7d26800d68079502e15cb2b6c8fab94362

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@18.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 4553
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SW3R5YTkURz8FSkdu%2Fw8s2MTNtmb0%2BNZ4JC%2BnH7LB%2F46iDz%2FzQ3W03tYeI762zNcwA51a%2FFMsnNx%2B%2FBWcNNzDgf%2BQzxtScWBDT1gPKaZYx5QLJOULv4pDShxmMYpwivk8Q%2Brq%2FSLVjI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bde55693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@4.png

188.114.96.1

200 OK

9.3 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@4.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
9.3 kB (9340 bytes)
Hash
435be4a6aa47769bebaccfc46a137899
a26dec5ded18c6241db0d582c95cd478c498df2d
71075ebe28ac597db112ce95af914f87923bec45059e804de4f483729c5b1238

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@4.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 9340
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T3R0KX%2B%2FL6WpK9km%2BH4AUrKt%2FdF04rm7PzDLoCbhwTnqCB1PdQWxY1k5S%2B%2Fn04bGn%2FLYe1tFVl6Fa0Ji2bW7jWzsiyH%2FKXJmJPQbfbpE%2ByH69Acehw%2F7iGkvUFxT0YAohVORNzQsoFo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add25693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@13.png

188.114.96.1

200 OK

10 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@13.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
10 kB (10289 bytes)
Hash
f0e76f5608964edb12a6991a1fa5aeb9
1bf568acc65662bdb155404d04d8b6a0455afc09
91e5293cc9aa33f06dd20d26fc612e8545cceabda3ac45dc8e7bc6c015aa7d60

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@13.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 10289
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iOcXZH6P79aSF%2BxPrDwVTmuQQ%2FR83VvaBoj60TWh1b9tfQl%2Branx%2BILnZWQTsoTi5njAK8f484I1rRXaQxF2P7uwU0z2Pdajfb6%2BvM1OW385lkqDDDKmaGttdvGBANpjYoMzFRwelr4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bddb5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/footer-socmed-5.png

188.114.96.1

200 OK

392 B

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/footer-socmed-5.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 51 x 51, 8-bit colormap, non-interlaced
Size
392 B (392 bytes)
Hash
ae488386911b28a42846d0d9df6b8c58
54d1a2b9321c53634b9f45f64f2a1e224d78bc7b
567be788b1f03b45c11b75753e55aba755ca3091de71f34bb056e4c5ffc299dc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/footer-socmed-5.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 392
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YCcy6ZYet4M8nQ8HBAnVscpz%2FprV%2F3xUqNXUXGMbvT1qcUhqpVFYvqFXvEWLUOwJQkbAB%2FwNFahytZIgN5clv7E96ooSARAq2pmP8vOsXabAE8WSc8yD3Rn2Q6sSx%2Bj1jT0G2rXYA4s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cded5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/icon_fb.png

188.114.96.1

200 OK

4.5 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/icon_fb.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 512 x 512, 8-bit colormap, non-interlaced
Size
4.5 kB (4549 bytes)
Hash
55eef055b7e3c9a7b01e75bf1d946602
298bedf186fdcc606901513a2edbb5bc3ca233e6
9af17159dff494810a71a37678db1df805f264b935730d1c2e5a4d970305917f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/icon_fb.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 4549
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Thu, 04 Jan 2024 17:35:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J7a4teegvo4O0uk940ilSQUGhgn2wECHffBm8dzM5w%2FgECkcwh0oO2WGQ0OfOXkcRZoJA9GQwR%2F%2BV3QAki6Xsvas54kejreBObAyaGfOxELy7ZL58V6KA91fVTRb%2BJ%2Bk4sMuZnMfcTY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913ddfb5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/footer-socmed-4.png

188.114.96.1

200 OK

450 B

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/footer-socmed-4.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 50 x 50, 8-bit colormap, non-interlaced
Size
450 B (450 bytes)
Hash
50e84b21b03baad8e7c331bbc41a3989
3007786bca7260f59f4b89371c60dee440930aa0
e9b6b6f470a5ad6c59e1b418d41c539f2aa905ebda9e6ddf3b42bafc0e244474

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/footer-socmed-4.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 450
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BP6bq72rBF%2FE%2FMqfHUd2LregCAy9yY3PHJ%2BSkb1Vtdw533dxU8vaL1gYF%2FbX7uZy2fMvGj%2FeR5HEkBrauFwVZ053BZZc7I2kUE9K4a0YMPnM1pnqu714Gl6DRUFmjDlHC%2FNXZ6jiIfE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bdec5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/closed.png

188.114.96.1

200 OK

444 B

URL GET HTTP/3
dgr2.krafton-news.com/img/closed.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 43 x 45, 8-bit colormap, non-interlaced
Size
444 B (444 bytes)
Hash
5659d0fc21341bd1cb9823da04d89242
2c8b3e0851913bb30863b7cca3032970fa84b3a2
dd93289262dcf48834e9dbb09685d665f1a2782ccc2d201c6dbfda9c4c81c14f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/closed.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 444
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Tue, 19 Mar 2024 13:54:36 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kbC2iOjV0pOBSkGe7xdrlzErmpVh%2BGsYdCNzFWzX%2F8xWzB5xCRxsIR%2BHmVQgemv%2B4NwJyHgzToQXcFyb%2FVy%2FeWyMFiDdV7l6wVbtc0sU4sV7vWhyXAoo%2BdlIgf8lY5xlFlLtL%2BX%2BGPI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf45693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/link.png

188.114.96.1

200 OK

1.3 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/link.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 77 x 74, 4-bit colormap, non-interlaced
Size
1.3 kB (1285 bytes)
Hash
476dd0272e48a57b6613b95183c99c45
d096fda3dc49d5dc316ed09546a4f0e84b77afb9
4c1da8237e48062e54e64a2b3c440520bac92db38b2f9fa57692d5a5f3ab2454

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/link.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 1285
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Tue, 19 Mar 2024 13:54:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ePOJcMPTvfKs0BJOM59l3nQXP12yqlZHusDhV1QlYacDjwl7EuvPK%2FrbouS8afDMnabmz9Kgazc193hstSL3rfU1M8MpjHZ5Qp0A5r%2FcAdemhJWJbhDH70%2Bbumh73XyNU9WmHskKWXg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf25693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@15.png

188.114.96.1

200 OK

8.1 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@15.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
8.1 kB (8070 bytes)
Hash
3f1d04157f560debe40f11f4ffcba68c
bef8671e1f4b3689cb801dd8b27b0129761f11c5
c05d609df474e34865036ee0862d7f783cbd7dfb60f2dae2a8c69c6f7a706ab2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@15.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 8070
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o1cjM7TEkCBjghN3Gh9OIv%2FO6uhtYaURx%2F%2FURYndbvSQxZIucnM8uQdP8QTjha8p05%2Fed%2FZ%2BM6ibUPufhIBZ10UAoSZ7PdV3iPeIsM6HNnQMzGPjCI2mm5RzQHM%2BmaRGTs1DbuIcEyQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bddf5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/footer-socmed-3.png

188.114.96.1

200 OK

374 B

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/footer-socmed-3.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 52 x 37, 8-bit colormap, non-interlaced
Size
374 B (374 bytes)
Hash
2cab6a226c0a13d7135a52207c444300
1b25d6a6a67ae82e3e74fda39d72982e5a109e33
b6af1febcf285505241c3b539b152fe148e7a96a739ecf18a67825cd162cabb6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/footer-socmed-3.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 374
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1ruVOQ5cmURgUekQXcqklveeB%2FYcclQCk5hDYWmebmo%2BOrLexwO6m2XJ7YcLddbLpxzMh6w%2Bttm9Qls47X5YPNLZ9afyOjbpdPTwuuKumD%2BEU3EPJiC1%2Fa%2B5S2b953e8d4vm92wFL%2B8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bdea5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/icon-twitter.png

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/icon-twitter.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 86 x 86, 8-bit colormap, non-interlaced
Size
1.4 kB (1393 bytes)
Hash
3d3b9b1a933b235c0df9276d27446be4
c944d8b18cd63af80e162f7666c2f3d0e31b52c7
680895b54f5fb8868f7ede5dff4744177806d75aaef81219ac38260b32a4cfd1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/icon-twitter.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 1393
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Thu, 04 Jan 2024 17:35:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mTBWuQLvlizgPk%2BL%2FqLEo0da8jbtA0WLmywVcEXJ7UuJW5862Fa3DoZyEK2BI4Jw%2FXToSvefv1um%2BkBNbCg659caLRDIGGQVfuIJ4pLmEKcayUn618nCubjw73CiIRwwbLOKbG76CAY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf65693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/icon-facebook.png

188.114.96.1

200 OK

5.5 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/icon-facebook.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 1024 x 1024, 8-bit colormap, non-interlaced
Size
5.5 kB (5468 bytes)
Hash
2d797a69acc678581d3a4ea0fb0636ed
3c13f1b3e8fa01cc284ed3492dcb2efd447d06bc
44a4d8218d1a959cd0ff8d764fcf5306aeb21e1689725b63825bd7ee79186baa

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/icon-facebook.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 5468
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Thu, 04 Jan 2024 17:35:42 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tEwYZy8aaqSvI68GlczrgBYqAV%2BYMtGWnTyczS3UQQzpwTpLHSNuzjfnGYm%2F6GS4pnnY%2FxGOB5j6dqIC2wxS9qbIXXum2NEgRC6W6Q0B5jBBIS4BTHqr8ba9rOyH3S2CAHfSp3z%2FM04%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913ddfa5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/kotak.png

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/kotak.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 396 x 396, 4-bit colormap, non-interlaced
Size
12 kB (12439 bytes)
Hash
bee0c08daeb68d97746f29ce06af0de9
3995c31366aa7b825185f3b5dbce30d84e5b7eb2
1f518c9810b665cb5dc1744c8469c19bfc5abe970686d8c933614409776089fc

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/kotak.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 12439
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Wed, 13 Mar 2024 14:12:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5rVvTi9EPw%2FBDUrEaljR%2FUfcmaP%2BMROxXHHthMYtYNBbZHrx6LaoZJsoM4lB2niZJFODe13%2FQXT3DQWHlpUd9og0%2Bkweiw3DyX6rCQU51xw2r1P0FLT2IoUvR2z%2Byw9j%2BGB6O9H8mCw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913ee045693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/load.gif

188.114.96.1

200 OK

2.4 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/load.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
GIF image data, version 89a, 164 x 38
Size
2.4 kB (2427 bytes)
Hash
4d6f2e21a528b9bf09013864360288da
606e36c12fcbcb77fe9447b2e22e94ff9b03b04d
1c732615efde8aa29b32a71450c55d5d574a9f154eeb58baa8456de160ee6b1d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/load.gif HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/gif
content-length: 2427
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Wed, 13 Mar 2024 14:12:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z9gOwv%2BaDXp2M0iT%2BLqlh0yX%2BA6PgK6aW8nUyC6%2FK934nZkNIrjabKLt579v%2By4%2FbPniNZrhMLmXWDccVFbBNKzYwI08NRMs1wJDIgHadT6XQWW4qVKroWbElmHIrGCPQ%2BaFBa1c6uc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913ee035693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@7.png

188.114.96.1

200 OK

17 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@7.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
17 kB (16763 bytes)
Hash
828a6da0a91fe90991560c72072af863
aaaae440237f3a5dc24158c9a0b23a250d0340a2
f74c463e97634b1b8d58a2ae26f902f8f443c495b365fe982d22a7ea2e58f7ab

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@7.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 16763
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f4tm1hD8PmEqcxDZ3mLFEIrb5KmI6%2B%2Fj2A66PRN2DBVzYz9k0H2neHxEqv3i9RCypRuhtBV0D3BWgZQ1g3obaUQhU5dmMqYazUlZfGKUzFjyUPP%2BULrpVu0DvtPuMxXN5tZSZsYLXyA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add55693-OSL
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js

142.250.74.106

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B
ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT

File type
JavaScript source, ASCII text, with very long lines (32061)
Size
30 kB (29671 bytes)
Hash
e40ec2161fe7993196f23c8a07346306
afb90752e0a90c24b7f724faca86c5f3d15d1178
874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4

HTTP Headers

GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:38:22 GMT
expires: Fri, 28 Mar 2025 17:38:22 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 42121
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dgr2.krafton-news.com/img/rewards/@17.png

188.114.96.1

200 OK

15 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@17.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
15 kB (14560 bytes)
Hash
880d2a422741b60ea0ce849ba86a18c0
34792be4f8db09ef139fb60bcb0ab6f40a003847
d661ebc14c81416e156c9610f61533f50d0cdb331768f30aff5bc8e78d00d5ad

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@17.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 14560
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:24 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qkelxR0%2B1Sp2SJfbhv6%2FSstZCIw%2F32sjvN0CZFEQUYrUwaK2NKZp%2FQYLdd0dkjQELzbEey%2FcP8Lar%2Bg%2FG8d3ImlitmbS7xBb8YI9QJexwOs8WvPLoB7ku%2FHbyoo2hn6CYsROyN9Vm3U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bde45693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/notif.png

188.114.96.1

200 OK

21 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/notif.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
21 kB (21135 bytes)
Hash
10fb2f7499d84efd3798ded9c810ca18
0b09367003cfef6faf130156fc4720e0d326739e
7d2df0e5213a11e95b30c953462dd32f5590266601d3e8db85910fac57e4f0ff

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/notif.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 21135
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:19:06 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nEdAdZExb7%2BKXUBV47ya1z4kigmL2Y9bk5SKfEBbR7MOoTpnf%2BTF4xzoAW4Eb1%2BXfkxP7nTP7Fwct5opjmjCshYYtCIa5It5kedYx3SysSmjF%2BsQP2Qb%2B4opdq7k3RK1wnwEZ0O%2FX50%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bde75693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/login.png

188.114.96.1

200 OK

15 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/login.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
15 kB (14687 bytes)
Hash
35bb21d1f052f99b4e2b2249e170691f
f217a12c47f47a4d0257b0e9fbcbcc52688c7caa
96fc28bb4fae0d3744930fe3ba476a26202692eed4d5d4c950255684bf2f5099

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/login.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 14687
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:19:10 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GExB7dcmqOQ%2BG4sLlWiJif8GZtyJzbfMUoRJpwjzHOEqBZa7%2FoBR8HlwQKGh2hatWJUXi6Jxorl2y5T1kRA%2F6%2BR2KadY%2FBdV4MRPOsSWPfUHcksbBP2leUysxgBHFqY03luP1rk%2BtQM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf35693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@10.png

188.114.96.1

200 OK

16 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@10.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
16 kB (15912 bytes)
Hash
d4beb37ce435a76db449ac8cf0774044
9a8812cce948b6f69e62d2766d4cf351599b2396
4c8a2dc8c5abc472e041aa5c22b02a4ab56bba48835e7af9edd0bd4bcaf2e977

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@10.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 15912
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:30 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B8OWH6gOIlPHI8sT9yzofFwyLmP0klK0lFRMIhpDtPyaMJch4RU6ZzBg%2B2VENMmR4HTCsDtwkninoNd7clgcCS5Gaf79WSIiR9FXMHIoeXDmGMzhP%2BS904XAFsB8Bc9U8yDBudSdqDQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add85693-OSL
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js

142.250.74.106

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B
ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT

File type
JavaScript source, ASCII text, with very long lines (32180)
Size
30 kB (29707 bytes)
Hash
32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3

HTTP Headers

GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:21:57 GMT
expires: Fri, 28 Mar 2025 17:21:57 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 43106
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dgr2.krafton-news.com/img/rewards/@3.png

188.114.96.1

200 OK

21 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@3.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
21 kB (21111 bytes)
Hash
71a23963ab9e22bb314875ea24931232
00042735c6ea045378171525ad3d3472e243bcc0
0de74c26043872e05a618360d5e0d9025b4957c7ed1f0d33dee01b7d1e6b5441

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@3.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 21111
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:30 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XDpHfpNOd5ldIT830afEMgQB9eQWYvkZEriNgRh6ycb0H6vAyTeSIVryTo6Vp7FOcabY4OerGSzPLsXA5XCHt7ttSoXm0dEidIK4sGqNybswaa2paIedYgZzyjdmDt6Rra9EyvIPJ6U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913adcf5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/loading.png

188.114.96.1

200 OK

1.8 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/loading.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 88 x 88, 8-bit colormap, non-interlaced
Size
1.8 kB (1752 bytes)
Hash
be33c96c2dcf2480abbddf2297b8fd7f
449c58d674ea49613fe2b4c9f0a76233b17852b9
ef850a1178d4da6a50c129158abe1c87870da1c01d0591633495258a3e6bf293

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/loading.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 1752
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Thu, 04 Jan 2024 17:35:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FS68hB3ZVonlVge6eeXCNCOODc3Ind83cuieTtK1TXmTVTCS3qTDqk3ndvpaQqW%2B5%2FDuCQJqDChwqtkRVH2uOvNbTYpp8Prv7imI1nkEjejoAL2ifk21Pdtch4vc5AJPai16iPf9Gsw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913de025693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@1.png

188.114.96.1

200 OK

17 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@1.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
17 kB (16807 bytes)
Hash
e23b79f26d660e6630fffafdf335c40e
a1742ee52aaa1df051eb308787674b86a6d5fa0d
9376e47e09a529923777c2d4e1286c01e4999b91330cac9e04600fb9b36a13ea

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@1.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 16807
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:30 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m%2BP7afsRQ%2BvnWtKUmFNF06DU0PBFbaCBVzBKw8UCqnykhPR3o3TGrlFVF4WSI7GYkTpPxwVnIOLU4bofZQRgoNEn5DqabxwT0KWPHseAZWvwh9I41FWPGRWbI7FSUuKn6yFwo2pij2c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913adcc5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/rewards/@2.png

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/rewards/@2.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
14 kB (14254 bytes)
Hash
49b0f84fd22f6f6aae4774164830f5fb
ef2d99e07946fc86d13702dff7435a16d81e16a0
eeb9306779e966c91b2f1ca7a9aba481d07053eb1bfa6c0c3a98f2da99e5cf2f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/rewards/@2.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 14254
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:30 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=94a6D4dr6c5jAe%2FTBsRY50z9ezwGOo2LNM389XbXgkFdXlMM0oDqL%2BvRPubFKCZInCXU0s4kakQOsidLoZFCsrzBOmSjhXMT6p2aBD0wtznY8eB6WSmBA6SUonkjDqRovq%2BHSsrlXj4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913adce5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/logo.png

188.114.96.1

200 OK

46 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/logo.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
PNG image data, 1074 x 800, 4-bit colormap, non-interlaced
Size
46 kB (46315 bytes)
Hash
4ab4b2635f672e6846d590766716b71f
0d2ac2a2cc367e05645c8e9ef404f74bfcddae79
f729135f4ca3d6fc5e913c5f3165afd83e25c0fa01203a919f888de24148a5a2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/logo.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 46315
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YVGin%2B00FpKAy%2B4El1Yh%2F%2BdnQf7a70b4KzV92LGe3ZfMN21MW4WxqSafm3eBnqpUm3pL7n1o1kj%2F0dlomlaZ%2B2MxTEl6QZjEArMPbSdgJhsybHnB0E4mTM6GT3Li8Pc1%2BeOr9c3NFGM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd69138dc35693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/style-img/icon_2.jpg

188.114.96.1

200 OK

41 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/icon_2.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 554x554, components 3
Size
41 kB (41079 bytes)
Hash
2d275ef78270a0c2fb8a8d736937c4e9
454cee8c58df4da6d570ed6bf66f34e29c74c07c
4313944f3dc763d16c92e15d8ae251fba1bbb9aced5da0716a56e68f75028f45

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/icon_2.jpg HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/jpeg
content-length: 41079
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rmAf4zty%2Br34E7JpWrCymMykzciWvPo9XWireQT7veQ0fs9wu%2BFFevtRE4T5OsiCxafbuno932CDCznCB%2B1ysXQhYBSy5FzYUG%2BLY3e2B%2ByuU2fdNtgXDhgCA0xd%2FpEBXOteUe3IE8s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf75693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/header.jpg

188.114.96.1

200 OK

43 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/header.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
43 kB (42557 bytes)
Hash
d607158afa31ddb4e83814574b966d9d
20674ec5302c4305b0cc4deb98067e280f7e449a
5d526bd9ba22bf6f007f128d4c67d8c6985185677e27a133048416d3e13e8cc5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/header.jpg HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/jpeg
content-length: 42557
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 19:52:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wz7PX%2F4G7Geo6PMg5%2Fssocv3J%2BDS4fu%2FsRvF8IF7c9Erq6nBzUnkGLdZESfXvDmlgfYod3lMyZXTm7vv4sZsH8npXX9yneDVhYHErwI9QasHfCLmiJVHl8qfqL5kip%2BZFf3my4UE%2BDE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913adcb5693-OSL
alt-svc: h3=":443"; ma=86400

www.pubgmobile.com/en/images/nav_shop.svg

95.101.11.144

200 OK

526 B

URL GET HTTP/2
www.pubgmobile.com/en/images/nav_shop.svg
IP
95.101.11.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
526 B (526 bytes)
Hash
061f8e3121c0e545cb6277cbdba661e0
680a6ef2b0b5b9ae376ad927055e93e1efca2389
bad9e2db663bbdb4f80bdcb6ea144d69502f9d58bf6fcf19f17e365ffea0220f

HTTP Headers

GET /en/images/nav_shop.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-3e1"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 29 Mar 2024 05:20:24 GMT
content-length: 526
X-Firefox-Spdy: h2

dgr2.krafton-news.com/js/selowscript.js

188.114.96.1

200 OK

1.4 kB

URL GET HTTP/3
dgr2.krafton-news.com/js/selowscript.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
JavaScript source, ASCII text
Size
1.4 kB (1354 bytes)
Hash
4353bfc76c6ee7ef72e04a4867ec2375
05977c83356830b9db40ce414bd8c1ef6c89bced
3e7421c9859c8f135e950b22e11271d609dac8302b70762dc2c9496669cb59a9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /js/selowscript.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Fri, 05 Jan 2024 02:29:34 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=81NfE6bwyrGy8aATfzKlzy2pfvF%2Bivfq46Pa0zFoNSpB2jNXAzEGdnNjHbiprZ96LCbQtkFNOKgSjinhetENjmcklC3uMacplJhOVoaKISJGjItivJM8F4ECDwmohexYhao85lwycaE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913ee075693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/oke.png

188.114.96.1

200 OK

46 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/oke.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
46 kB (45807 bytes)
Hash
a3f7a462bd15357700b652ae11fceabd
b083ec4e72b1d05ab38acb8c085b7a80ae855d5d
1e6d214c782a630d6dc57ce5e8431017f97b640889093aa8cbede1ec00ba1955

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/oke.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 45807
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:19:08 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B%2FexCJvN1sQ4rVKNsD%2FmKt70TT6SDaNTHbThbNwujKZHn4dfBzG3xSvsDG6%2FmwWegNu8eiY%2Fu0kbHW74tNmjEa6dA3Wyb%2B3tZxnq8YEWT4KSWkZhkCZhgfZXQV9VQdlShdakPuIu%2FC0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913adcd5693-OSL
alt-svc: h3=":443"; ma=86400

www.pubgmobile.com/en/images/footer_link_bg.png

95.101.11.144

200 OK

1.6 kB

URL GET HTTP/2
www.pubgmobile.com/en/images/footer_link_bg.png
IP
95.101.11.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT

File type
PNG image data, 560 x 127, 8-bit/color RGBA, non-interlaced
Size
1.6 kB (1630 bytes)
Hash
92ae645b6114492e8c1c5464d949466a
1d27f2644c0f5e899e9478c78136a9bc94131150
f1bd509f6032d31635a91d57de9428b83929221b854768c38c8f1643877a9417

HTTP Headers

GET /en/images/footer_link_bg.png HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/png
content-length: 1630
last-modified: Mon, 21 Mar 2022 13:24:17 GMT
etag: "62387c81-65e"
accept-ranges: bytes
cache-control: max-age=110
expires: Fri, 29 Mar 2024 05:22:14 GMT
date: Fri, 29 Mar 2024 05:20:24 GMT
X-Firefox-Spdy: h2

fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15044, version 1.0
Size
15 kB (15044 bytes)
Hash
4806226b885b3b3d0ae52142f6bfb3af
2ea5cc6d5e4adb874989a2b74bda062296fb1ad3
714088bef569d6981bfae79530ef315f4d6505f302a944ce9063601919977e6f

HTTP Headers

GET /s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dgr2.krafton-news.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:29:13 GMT
expires: Fri, 28 Mar 2025 17:29:13 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 21:55:11 GMT
content-type: font/woff2
age: 42671
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

i.postimg.cc/02KwtTc7/footer-bg.jpg

162.19.88.69

200 OK

13 kB

URL GET HTTP/2
i.postimg.cc/02KwtTc7/footer-bg.jpg
IP
162.19.88.69:443
ASN
#16276 OVH SAS

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13
ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 579x800, components 3
Size
13 kB (12634 bytes)
Hash
d1371c19862911f28e8a82df40b99bdd
be41c9f953d7b8cd6bcedd75321d11a711e01548
2e941582ccd035c15c6d6003745300a0f1a2ad587774e255a8482939f58a6d16

HTTP Headers

GET /02KwtTc7/footer-bg.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/jpeg
content-length: 12634
last-modified: Wed, 23 Mar 2022 19:15:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

dgr2.krafton-news.com/js/showHide.js

188.114.96.1

200 OK

4.3 kB

URL GET HTTP/3
dgr2.krafton-news.com/js/showHide.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ASCII text, with CRLF line terminators
Size
4.3 kB (4255 bytes)
Hash
81a0dcb749a291c326c676a553f29e0f
a528f289c1de800f4a3849eaf629c4f470067043
7638e2a588d8a07f6109e9116876892aa4b6443fe949e7d8822cb1082d5b36ff

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /js/showHide.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sat, 27 Jan 2024 01:43:54 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AsuOrhbZG5oFXehsbxrks28vXcwLQrKMSquBfOmYq%2Fj02aKC5XrVySvr%2FU7l3Bl3Pl35Cwkq8V6WQ6aw1vjIpv7yGMWH%2BehgNJbrMa%2FB07BwPzeAVTn21%2B6JUrhV0L71nHq1JohYF1A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913ee0a5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.pubgmobile.com/act/a20180515iggamepc/logo.png

95.101.11.144

200 OK

6.1 kB

URL GET HTTP/2
www.pubgmobile.com/act/a20180515iggamepc/logo.png
IP
95.101.11.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT

File type
ISO Media, AVIF Image
Size
6.1 kB (6055 bytes)
Hash
a74329a2054a9e096a43ba8742dd9523
4ccac3041bf854721b91dcb45286b8488dd9f072
cde9945e91f0e51058869d687cd24c8f58804f25623999f1291c71b3697093b6

HTTP Headers

GET /act/a20180515iggamepc/logo.png HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
etag: "5ff6baa2-3bf2"
last-modified: Mon, 08 May 2023 08:25:46 GMT
server: Akamai Image Manager
x-serial: 910
x-check-cacheable: YES
content-length: 6055
content-type: image/avif
cache-control: private, no-transform, max-age=43200
expires: Fri, 29 Mar 2024 17:20:24 GMT
date: Fri, 29 Mar 2024 05:20:24 GMT
X-Firefox-Spdy: h2

dgr2.krafton-news.com/img/btn-buy.webp

188.114.96.1

200 OK

1.3 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/btn-buy.webp
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.3 kB (1254 bytes)
Hash
0a3d013304fa9707ad810302ea1bf543
f03f7e705de373d378ecb1058340e1a063740754
ce4bb5f5b9e053322114454445ba0c353dfc422edef270271ed937aa44c9aef1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/btn-buy.webp HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/webp
content-length: 1254
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sat, 23 Mar 2024 03:20:12 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n3V3motuh7yYGZ%2FX2qb5uNl%2FzkC2gLQFy0FqhtR%2ByTvusyvaEKr0O0iEKp3abjYTzBUMaiMx3Zv83H21wKG9d1s4mpiFlbKkHuo6tIMLNJ4NPJPT3MNu84y9dT90R3gTRwdhW61Ef%2Bw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df8c5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/js/kinnonscript.js

188.114.96.1

404 Not Found

4.7 kB

URL GET HTTP/3
dgr2.krafton-news.com/js/kinnonscript.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
4.7 kB (4697 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /js/kinnonscript.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wv6jShqdKL5kzwGY5iuXCjsLd9pz9PxDpYvg6s%2BurLfwSyhpAkhBKgtunAbfkLnUg5Q6pDC42cAF3TMRUza6Zwc2E0jNJw%2FhQ3Ys5ewIoIqn7%2BeytYQODxVPclPkM10t7%2Fth1v5m9%2FI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913ee0c5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/tips-bg.png

188.114.96.1

200 OK

559 B

URL GET HTTP/3
dgr2.krafton-news.com/img/tips-bg.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
559 B (559 bytes)
Hash
fae7976f6a58880648b8174f36e552fd
adacdcfe301ddeffed1ea7b80eb4a57def95fdf7
f0ef5a10a69465cb7e05fb91cd74549a3427d53539d15b337a179662bfc9eeac

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/tips-bg.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 559
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sat, 23 Mar 2024 04:42:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s3nn4e3UxoBUXv9zOHvaC%2Fs7P2MB6jUlqk99o%2FnCUfn22SUxZg87nnM%2F%2FBIL9VUnADAR7lzJRq7QdmT5dI%2F%2BT2FE7D27Ld1BhdLY6RyDjmeO5rN%2FnsQRibY6Yx43PnaqVoYbOSprBss%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df8a5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/item_bg.png

188.114.96.1

200 OK

22 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/item_bg.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
22 kB (22157 bytes)
Hash
719d8a539ad5a8171cd4ce43496a590e
9a8be079f2aa8164911c71509ea7346c401b567d
7004660a126b7f4fcedb11af2a7af13fb8a9848ff9a378c47f1c577dab01ae0a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/item_bg.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 22157
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sun, 24 Mar 2024 14:19:06 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5uvt%2BRG0BXyvVmWT%2BtRvF%2BpMUHsQq6lB3n7SVeNrBi6NSfAw%2F3u5%2BXmtFGCaWYL7slE1npzVutaGz1Oz5V5ecACAu8JxJ3MP9WfszjjALyLgaEtZ9je3I6nFXnUtN98%2BDdIuFPQTrAM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df8b5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/title-en.png

188.114.96.1

200 OK

20 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/title-en.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
20 kB (19716 bytes)
Hash
7ca51b4dee57ffca79037dddfd7738b6
7fdb004a69d78f1f1b407002d0065af22ac442b3
029bf2d610372decf9a7d7b6411e7f3b9a8f2a6c30f67e4bb13178dcea9cb696

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/title-en.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 19716
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sun, 24 Mar 2024 19:52:18 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IDj0KY21vefXA7qptiphtZ63glY6Vtgm%2Bwu4OxOt9RFO%2FCPnAzGSsRwev%2BOL5ZohggG%2BH2PSNgxnuaAYqeFm2XYHf1tgt%2FBZuoL%2Fdw75gAwEHuXrjKoRgQJnb5uNJXZuqexJadMD0Os%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df845693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/js/scriptv1.js

188.114.96.1

200 OK

30 kB

URL GET HTTP/3
dgr2.krafton-news.com/js/scriptv1.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
JavaScript source, ASCII text
Size
30 kB (29749 bytes)
Hash
090885242047dbef3936d6c641e3ac42
00cabf2c4a3efc58dbd9582f0845404f2a35f212
ec48bfdf580d5df11c530c0c1c25ee65bf0362374bc96370faa1f4de08ab14b4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /js/scriptv1.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sat, 23 Mar 2024 23:52:08 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zCmDk7%2FDRAi%2F3vJGW1ZQExnZJ12oV%2F2TB5%2FydzaelshzVJDScV1mTVoFtF831eKLN5ERRYgdTBlVAfm3ybCzJG6pUT9CODqjSX6qjgNqfAh8JFYznB95vTeuFVKD1m4OWprPkjO9dIo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913fe145693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/fonts/selow.woff2

188.114.96.1

200 OK

22 kB

URL GET HTTP/3
dgr2.krafton-news.com/fonts/selow.woff2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22220, version 1.0
Size
22 kB (22220 bytes)
Hash
345579e8566a3dd6dc9feb5362fbe7e1
df075dd0c26e72fd7df19948f07904c1eaa72ded
1d0dfcc32b3be2bf3b3dbc371e9b7c5ce205f4bc6f7c8ce0226256cc7064c3e4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /fonts/selow.woff2 HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: font/woff2
content-length: 22220
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sat, 16 Dec 2023 21:02:34 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rQDGn9xtcRjC32o7pQ%2BXBQ2hDeDNGaPLvMWbdT7TaoQ7Xr8qjYfQE%2FZNR6EPOrlDcxLgFVFuIVBu9jR%2Fs8CaWfPjtCqTaqS9XoDIu96Y7hFl%2FOLBeRGlXPaOntnd48TwBUSOReOkCpQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917ef925693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/js/loginall.js

188.114.96.1

404 Not Found

14 kB

URL GET HTTP/3
dgr2.krafton-news.com/js/loginall.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
14 kB (14113 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /js/loginall.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TEA3gFtzFy6UhQ8LuhdbaS11sCi7FiUjj8gY4h%2B0lxIxBIDROkR%2Fq42lFmbB8kkwi7kGj9r3rLAeCRWhDyHvb8xgx%2BaOpSoI9naYl%2BkuAyg%2FZzDsooE%2FAgsVVfvyzTDea%2B3mxjSlzm4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913fe0f5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

l.top4top.io/m_1725u5z7i1.mp3

135.181.63.70

206 Partial Content

20 kB

URL GET HTTP/2
l.top4top.io/m_1725u5z7i1.mp3
IP
135.181.63.70:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subject*.top4top.co
Fingerprint2A:32:75:1E:FA:EF:D1:3E:02:CB:78:77:7C:32:CC:60:49:AC:43:05
ValidityFri, 01 Mar 2024 00:02:35 GMT - Thu, 30 May 2024 00:02:34 GMT

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo
Size
20 kB (19781 bytes)
Hash
ee5b5d12064ae26f839b882edb33da62
6fa93ef00f294eec4ef05276e81813db1e95e346
4bc5852e5cec62ceab9260f712961f59609868151e01b63e7b7cae2b00efed54

HTTP Headers

GET /m_1725u5z7i1.mp3 HTTP/1.1
Host: l.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
server: nginx
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: audio/mpeg
content-length: 19781
set-cookie: klj_40d147_downloads=kh51z; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Sat, 30 Mar 2024 04:57:04 GMT
last-modified: Mon, 21 Sep 2020 07:16:33 GMT
content-disposition: inline; filename="open_reward_tab.mp3"
etag: "5f685351-4d45"
expires: Fri, 29 Mar 2024 07:20:24 GMT
cache-control: max-age=7200
x-file-id: x34392023x
content-range: bytes 0-19780/19781
X-Firefox-Spdy: h2

a.top4top.io/m_1725zobal2.mp3

65.21.235.194

206 Partial Content

18 kB

URL GET HTTP/2
a.top4top.io/m_1725zobal2.mp3
IP
65.21.235.194:443
ASN
#24940 Hetzner Online GmbH

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subject*.top4top.co
Fingerprint2A:32:75:1E:FA:EF:D1:3E:02:CB:78:77:7C:32:CC:60:49:AC:43:05
ValidityFri, 01 Mar 2024 00:02:35 GMT - Thu, 30 May 2024 00:02:34 GMT

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo
Size
18 kB (17691 bytes)
Hash
70ded6b0b406f9710307bc35e221629f
7034ec2ff72c936255b04c0890ce8976599380cc
22e1575a06426f427b46598d6599c565e80ed3e937b1872b0d5d928bfe5b2d65

HTTP Headers

GET /m_1725zobal2.mp3 HTTP/1.1
Host: a.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
server: nginx
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: audio/mpeg
content-length: 17691
set-cookie: klj_40d147_downloads=kh520; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Sat, 30 Mar 2024 04:57:04 GMT
last-modified: Mon, 21 Sep 2020 07:16:33 GMT
content-disposition: inline; filename="close_reward_popup.mp3"
etag: "5f685351-451b"
expires: Fri, 29 Mar 2024 07:20:24 GMT
cache-control: max-age=7200
x-file-id: x34392024x
content-range: bytes 0-17690/17691
X-Firefox-Spdy: h2

dgr2.krafton-news.com/js/sliders.js

188.114.96.1

200 OK

1.9 kB

URL GET HTTP/3
dgr2.krafton-news.com/js/sliders.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ASCII text, with CRLF line terminators
Size
1.9 kB (1888 bytes)
Hash
7c0eaa367317385b4a76b7e2c9b47ce7
65a7120dcabc92e4eebe3986f42ba527c2b710d7
638fc73ef8a7dd67388d64daa69ca29968b3e39cc777c907ce9e0505a6bd9494

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /js/sliders.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 00:47:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W8Jf76LhFVAlB04osVv9T02Tqe%2B4hipN%2Bc09lidJCwV1zHLj5sbxrYsmnt%2BLofnpB7jXORUUmfBGkaDJm5Q3Lzw0XZ%2Fx%2BHYSTC%2FAtvOsZ9svVYTes9hcPV8nCDlWw3NsjId0WwXBRmc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913fe0e5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/media/open.mp3

188.114.96.1

206 Partial Content

13 kB

URL GET HTTP/3
dgr2.krafton-news.com/media/open.mp3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo
Size
13 kB (12675 bytes)
Hash
58418a30e1310bf4fafa9fa0e57c18d6
b477e72668b181c3080d6b921e2edf15ef134f17
d5ad34e8bb64fba432c1a12b24cd1e532104d0183045e73abaaec72aa824df1d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /media/open.mp3 HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 206 Partial Content
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: audio/mpeg
content-length: 12675
last-modified: Sun, 02 Oct 2022 09:58:58 GMT
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: EXPIRED
content-range: bytes 0-12674/12675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ltJszJVlaAG5eGFnGZ1STYWoNCDLGJQdw7M3MXst3DTGgkqf0rUp5HlyAdICJV4WnkpdUIYEN%2F5u%2Bbvp9fcq9h0EY9uf1iPRegGwrWR0nCjN739yqHbtHkMm7ldlK60O7t5OSeQMnIk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691c79805693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/fonts/all.ttf

188.114.96.1

200 OK

50 kB

URL GET HTTP/3
dgr2.krafton-news.com/fonts/all.ttf
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 45 names, Macintosh, Copyright (c) 1995, The Font Bureau, Inc. 1995, 1997, 1998. All rights reserved.Agency FBRegula
Size
50 kB (49544 bytes)
Hash
70777e6bd210190350f7c92395c1860f
a91fce5cdd94d1f308c1d447ee612aded030eea0
d672eb87a3787bdaf8f75df50f9ade864e2d5c9cdec5b07ce6de9d7d39433ea2

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /fonts/all.ttf HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: font/ttf
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sat, 23 Mar 2024 03:25:08 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lmPELH2dY6DmN%2FxVk716AxN8NeE7e5YBNRal0PaZeDIr4S9LhfZV1v8S7t5dt2KA%2B2Bpw29YnKpTWJDT1%2FnYWEPkQQRGW2Nv%2B8Iwd9OeEJTegNZHBQPT9%2FggvQ0uWd%2BH03fJZ%2F%2FW1Hc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6917df8d5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.pubgmobile.com/en/images/nav_menu.svg

95.101.11.144

200 OK

426 B

URL GET HTTP/2
www.pubgmobile.com/en/images/nav_menu.svg
IP
95.101.11.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
426 B (426 bytes)
Hash
a1f09c4f5c87271dbccf8cb05885ad42
18bbacc9c372dcb6bc77c2475595e058c1ad1594
b0d849e0e910d13bcdab1e94f5c799dda1a9429c908e18069f9dc7f7d551d58a

HTTP Headers

GET /en/images/nav_menu.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-374"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 29 Mar 2024 05:20:25 GMT
content-length: 426
X-Firefox-Spdy: h2

www.pubgmobile.com/en/images/nav_language.svg

95.101.11.144

200 OK

675 B

URL GET HTTP/2
www.pubgmobile.com/en/images/nav_language.svg
IP
95.101.11.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
675 B (675 bytes)
Hash
d8ba211bb1be1a15bf5b0143ca1b009a
215203609a551dcaccf6e434508623f302635f86
a441182568ad88fa9c54384de94a77f64148d3d54df66ea1beff4a11100967c6

HTTP Headers

GET /en/images/nav_language.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-45b"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 675
date: Fri, 29 Mar 2024 05:20:25 GMT
X-Firefox-Spdy: h2

www.pubgmobile.com/en/images/nav_download.svg

95.101.11.144

200 OK

485 B

URL GET HTTP/2
www.pubgmobile.com/en/images/nav_download.svg
IP
95.101.11.144:443
ASN
#20940 Akamai International B.V.

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
485 B (485 bytes)
Hash
41c1c00e6070b60d70177ae11625bb86
7f01626c76ce129247860802fd2355f2878fe8dd
0b22f25d8b7421c4c4aec15a9a4781f873545a5732ac128871da40f38c98f4cf

HTTP Headers

GET /en/images/nav_download.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:17 GMT
etag: "62387c81-3ef"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 29 Mar 2024 05:20:25 GMT
content-length: 485
X-Firefox-Spdy: h2

dgr2.krafton-news.com/img/style-img/icon_2.jpg

188.114.96.1

200 OK

41 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/style-img/icon_2.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 554x554, components 3
Size
41 kB (41079 bytes)
Hash
2d275ef78270a0c2fb8a8d736937c4e9
454cee8c58df4da6d570ed6bf66f34e29c74c07c
4313944f3dc763d16c92e15d8ae251fba1bbb9aced5da0716a56e68f75028f45

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/style-img/icon_2.jpg HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Cookie: cf_clearance=iTJwmZo5BX9B_AnEsFCiyicb9VO54wl_2RxqDXa3IDw-1711689625-1.0.1.1-Cb0cKx2zd1uaH6CJN3WeUkBNgUeTh2VOVQM9PiEh2RhJsEn0Na6C3ykFrYkp8lZBjIqiX2vlqVaiN9FYACalbw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: image/jpeg
content-length: 41079
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m%2FaOCcBWLsXRluGw4TlfVVVYD08N2xxglRUwCewddjoW2IdMgfBznzjwEtdf4C%2FqrUNFxkt6kT6oshAtfbswrp07MhH1%2B6%2F5OIlYEpheSA8cHxvkyDxx8OL%2Fqe4375YFOzZyYP%2FmS0U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691f3a725693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/cdn-cgi/challenge-platform/h/g/jsd/r/86bd690fad99569c

188.114.96.1

200 OK

9.9 kB

URL POST HTTP/3
dgr2.krafton-news.com/cdn-cgi/challenge-platform/h/g/jsd/r/86bd690fad99569c
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
data
Size
9.9 kB (9948 bytes)
Hash
836dd5f2344b97d845b392759abde337
e373bc0f5652779ec937bb42b6ea2802e8347494
1eb68651da84bc63d116614906a7479afca4292fdb63b74f228f509aa0fdef65

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/86bd690fad99569c HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12169
Origin: https://dgr2.krafton-news.com
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=iTJwmZo5BX9B_AnEsFCiyicb9VO54wl_2RxqDXa3IDw-1711689625-1.0.1.1-Cb0cKx2zd1uaH6CJN3WeUkBNgUeTh2VOVQM9PiEh2RhJsEn0Na6C3ykFrYkp8lZBjIqiX2vlqVaiN9FYACalbw; path=/; expires=Sat, 29-Mar-25 05:20:25 GMT; domain=.krafton-news.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w29WQODiLYSd3g2LAdgi57wW3c2UI5%2BSAYFcxVpLna27zr4ctkpE%2BcWLvOL154C9Iv3%2FWVM6Hn5T%2BMT1h1KW8NuOScQnlAyFrY%2Bvhsn%2BEhdNN5Cjc%2BUakKKiQ7FldsHNRxUoNUi9vDg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd691d49d55693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Teko&display=swap

142.250.74.106

200 OK

1.2 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Teko&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B
ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT

File type
ASCII text, with very long lines (1182), with no line terminators
Size
1.2 kB (1155 bytes)
Hash
517c67874f6f9ada9c4283fe962de9cf
3ef9577a3d48a4d102dbad75e10bc5563e08d81f
6a843b3e563cf2b17bbb15e15041f252e7524deb41991c4a2ce088b0e1c7f29a

HTTP Headers

GET /css2?family=Teko&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 29 Mar 2024 05:20:23 GMT
date: Fri, 29 Mar 2024 05:20:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dgr2.krafton-news.com/css/link.css

188.114.96.1

200 OK

7.4 kB

URL GET HTTP/3
dgr2.krafton-news.com/css/link.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ASCII text, with very long lines (8404), with no line terminators
Size
7.4 kB (7426 bytes)
Hash
b60438dd20eeb9480f0c64d2268808cb
dc5bec0d01f507ba39265ff874fde887a81cd9cd
d947f10f880b0f1fcdf987e26204b44464bba2377040e76ab7dd3544dcd83f4d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /css/link.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 28 Jan 2024 14:20:58 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UzQzcXwcINPY5lUxSx74fgqW0ThlKgjoLfOIzHxP2b6GOIYWxgciP%2F9cR53PYzwJbvobgtZPd2OhZvS5fAKo428Ten6etIOqeIxVr%2BqqGGAbhhAJng8jBmiRiZe%2Fh8RuGvyyi61SUpo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69137db65693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/css/bukanlog/facebook.css

188.114.96.1

200 OK

5.0 kB

URL GET HTTP/3
dgr2.krafton-news.com/css/bukanlog/facebook.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ASCII text, with very long lines (5325), with no line terminators
Size
5.0 kB (4994 bytes)
Hash
b31aa9931fedc83d94bf0b0f2ac9c8ff
f8b5bd5ebc48ecf1a6a1707cebd8361868a71cfa
c17464f70efb51fb6e97fd7429ec1496454dadfc85d388c6b06b406cf332147d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /css/bukanlog/facebook.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Fri, 09 Feb 2024 14:46:58 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2rIuL%2FY1tPTkkhcZa%2F5oHNdDEPHz6QFyDv%2BuoYyRQWOCtbDRpIhCebYV2fpdJRlR1PQ0nJ7o8YaH3LE86wbwNsUe2FqACINlI2XSoQxdKv8JA40rSJIeGPnOBbgXMxEUvqNZEBHtKMI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69137db85693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/js/myscript.js

188.114.96.1

404 Not Found

1.2 kB

URL GET HTTP/3
dgr2.krafton-news.com/js/myscript.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
HTML document, ASCII text, with very long lines (1276), with no line terminators
Size
1.2 kB (1238 bytes)
Hash
24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /js/myscript.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dXVKOLZEUkxtoIHfaGBHyyPpxiT0JIQbrk9q96u7EsNdBDv5y3CwyGPnkucEDhqrr%2F73%2BZQF7XyZF2Q5dnJeTrqP%2BfpiBMv2UXazsq8rS4dAIq%2BxQLbRic0Tf0vCfmJ4tfJl8rW0Qx4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6919782d5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.10.207

200 OK

31 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (30837)
Size
31 kB (31000 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 18:48:06
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: dd809c84048d5afa8e77adc8acacd559
cdn-cache: HIT
cf-cache-status: HIT
age: 11063798
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 86bd6913cb6a56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dgr2.krafton-news.com/css/style.css

188.114.96.1

200 OK

28 kB

URL GET HTTP/3
dgr2.krafton-news.com/css/style.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ASCII text, with very long lines (305)
Size
28 kB (27481 bytes)
Hash
726c4563ef1d6fe4f0d62eb1c3470890
914ec36c1c44ff7a3838db7c5461eb3e41a76f04
13f44c8acd0450ae9e9b23d25186c7becca88e5f14d4d293b942a2c5b032fa15

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /css/style.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 11 Mar 2024 22:08:54 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NdRQI%2Bf1%2BN5y9GH%2Bg7qCRXp4nsT4H%2B4vV0ITJd%2B8RHGtSEJBRaJwzCNQQFwPKZIq7A6m2rBt7gcCs8ab4iQKe4pLeHPBWMjMkUe3WY89ajvO%2FvA%2F1iy%2Bj2K%2FM1URBJ3no9pgX0K1cJI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69136db15693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/css/bukanlog/twitter.css

188.114.96.1

200 OK

6.4 kB

URL GET HTTP/3
dgr2.krafton-news.com/css/bukanlog/twitter.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ASCII text, with very long lines (6929), with no line terminators
Size
6.4 kB (6431 bytes)
Hash
6deebc911d2130cb9cfba82c51459b37
9c2389a5d15fe039f52c4d66e4a2c628e9839aa8
34f4e3cc78057a9fc7ff487d13d013275c9184a09b7246dd4c112b989d743cc8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /css/bukanlog/twitter.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Fri, 09 Feb 2024 14:46:44 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Go6fo7l5daW09zvfemdT%2F76%2FVw2CMg343ztzeKIOmhKvvVz8g9yUCLUxVd0PsNwbaiOcXp55J6kskCIIIL%2BJv1hwOZ3RCS0ZRh7xbM2QwRg9e9OUB9de2z77BYlHrUoTTCFmjIHoye4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69137dbb5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

188.114.96.1

200 OK

1.2 kB

URL GET HTTP/3
dgr2.krafton-news.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
HTML document, ASCII text, with very long lines (1271), with no line terminators
Size
1.2 kB (1239 bytes)
Hash
40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: application/javascript
last-modified: Fri, 22 Mar 2024 11:37:58 GMT
etag: W/"65fd6d96-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G2wT%2BlrLULQ5dmM0rNXfFnvBzIR7AA5jBlJK3Oifov8I6WsATlHO0ZKEVqmpAk2DyDlHmbNIQMC1VlGH72tBhhR2HW82VTG6WKMf481LkniS62tBZUlKy18nc%2FWGHUPrYAjHJalykuU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd69187fcd5693-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 31 Mar 2024 05:20:24 GMT
cache-control: max-age=172800, public
content-encoding: gzip

dgr2.krafton-news.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js

188.114.96.1

200 OK

7.8 kB

URL GET HTTP/3
dgr2.krafton-news.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
JavaScript source, ASCII text, with very long lines (7769), with no line terminators
Size
7.8 kB (7769 bytes)
Hash
b36cbd5b8df1d1180a1c45711d5fbf2f
0b2943bce296155c8b1a6a09626ca334d172d687
a94ab086f044c082131e3886c59530de2c89c4ca106cc30d43594360eee4dea7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
vary: accept-encoding
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0zTJdSXCr0%2Bc0258QHeJ31DZKbAS1XwH6W%2FNSKA7kVMscLDO6SwZN0omUSC7aG38KECrTKtagmPldfxbS5HoLQbgak4H8mq71%2B9FKYItvNHDAKmkcOUjPU%2FC84jcZl2T6ItBo5e5Mbk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd691c79885693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/css/fonts/selow.woff2

188.114.96.1

404 Not Found

1.2 kB

URL GET HTTP/3
dgr2.krafton-news.com/css/fonts/selow.woff2
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
HTML document, ASCII text, with very long lines (1276), with no line terminators
Size
1.2 kB (1238 bytes)
Hash
24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /css/fonts/selow.woff2 HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oDredY%2BpAm4QF%2FtugrlCpMTULF5DjUOL3R44TxxGdvaFjSxTg%2BrmbN%2FyhhMRn1AKsu7fpy1v0ryRF4bKNI7MwWWRio9fDbs39Xk1Zqqibe%2FZmwl3t%2BZQWdIwzDm76DheYGMmo485INc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691a98945693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/media/se3low.mp3

188.114.96.1

404 Not Found

1.2 kB

URL GET HTTP/3
dgr2.krafton-news.com/media/se3low.mp3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
HTML document, ASCII text, with very long lines (1276), with no line terminators
Size
1.2 kB (1238 bytes)
Hash
24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /media/se3low.mp3 HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M0dPGDO4WjnlOMxxQMLC2eVIiO1aty9OlRXP7PJ8GsFK6KHuQMPJqLt9uPpraUvRMWgTGNDssTSCuhc2bneJig08zKG7PWf94MMjKfrpLRExTZF19ns8zXxQjaSBIiarcbf9Pa1fdDg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691c79825693-OSL
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500

142.250.74.106

200 OK

12 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B
ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT

File type
ASCII text
Size
12 kB (11840 bytes)
Hash
807349734f3707b50b73c3fd626526e8
2f3ab67f0ffa01bc1f0c180cae9085ecc8d96d63
ce7d7e11e41b1b3619cbdf436bbf2557fda2d97d434e65fab281207ffae5c0d0

HTTP Headers

GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 29 Mar 2024 05:20:23 GMT
date: Fri, 29 Mar 2024 05:20:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dgr2.krafton-news.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

188.114.96.1

200 OK

1.2 kB

URL GET HTTP/3
dgr2.krafton-news.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
HTML document, ASCII text, with very long lines (1271), with no line terminators
Size
1.2 kB (1239 bytes)
Hash
40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
last-modified: Fri, 22 Mar 2024 11:37:58 GMT
etag: W/"65fd6d96-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1dASY%2FFozqNnuVXHXDWNpVUMGT%2BOHE78y1o%2F4urOVIgBQWM3KKmRY1pc5Ogoed9ipipuBDubuIvVR4GR5ZqgtCRu%2BSh2AVoO50K47B%2FkMIvnqPlICCwfaUeldtFqZhk%2B7NJ52vysF38%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913de015693-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 31 Mar 2024 05:20:23 GMT
cache-control: max-age=172800, public
content-encoding: gzip

dgr2.krafton-news.com/

188.114.96.1

200 OK

75 kB

URL User Request GET HTTP/2
dgr2.krafton-news.com/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type

Size
75 kB (75272 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET / HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EOV4GQkFrlkBS4Rv%2Fi4AYDY%2FaksmQ0YqTGG6Xn7GPfjQDTdkVbPNy7mBoe0rroP5Fxop7fdv3HA5YOCCeyFDbjTFDUYTrmCrD7W0RdnRU17N3xIM5U1wKgeEY2NlDLQqL6RCqC6X8r4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd690fad99569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dgr2.krafton-news.com/css/loader.css

188.114.96.1

200 OK

6.0 kB

URL GET HTTP/3
dgr2.krafton-news.com/css/loader.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ASCII text, with very long lines (6144), with no line terminators
Size
6.0 kB (5955 bytes)
Hash
0871902c1e3fc03adc8b54a4e0a72fe0
4f3d6341461c9830fa69c856f32620ebc04ecf60
0ec9849f16e30ce86df6ddd24db1f52074a26a965ff230da299726bac140e5e6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /css/loader.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sat, 16 Dec 2023 21:02:50 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9H07lhq8prT3VoMar1Yr57N9jC9%2BgXYXyJUefdTKN1LIikq5oJReeKIu2CnNo65J079YDFDB7H5S0OT2xogW5h84qaClIQKczG%2BXQWvRBm8NCoWUFo5XycZ0779quPx%2FcZfNzt6RFsg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69136db35693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/js/slidernotif.js

188.114.96.1

200 OK

406 B

URL GET HTTP/3
dgr2.krafton-news.com/js/slidernotif.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ASCII text, with very long lines (425), with no line terminators
Size
406 B (406 bytes)
Hash
3a70993b7ec1b300cfbfb54f2b0ad76b
28e7ace020a7adba66e0c123725bbb0edf6c01b0
17c3d4e59d14979090f5b09b6c3906496b4859e2ef43a781d6401588c7d9b0bd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /js/slidernotif.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 04:39:34 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R%2BjGtLDnIi3ZvEtV4x02J3V4Lwc%2Fuy9IR1asCjfdwSdKQ6sx%2BhvMGstvKrREoHyD2OFp2APJqN2O1JkbpmGJErCSWB3jsh8wxMmit5IVpvOdED5W25oCRoD6KrqQH03WMM5d%2BtZX2gI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913ee095693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/js/myscript.js

188.114.96.1

404 Not Found

1.2 kB

URL GET HTTP/3
dgr2.krafton-news.com/js/myscript.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
HTML document, ASCII text, with very long lines (1276), with no line terminators
Size
1.2 kB (1238 bytes)
Hash
24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /js/myscript.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FE9aOovJaDtIxryzuEfvaS6Aw2Ei%2FYcHy8dC5pmc3ld5OIX7t8rOBHQcItpauz0dgReVbX0EPF09JW5Ddyy9qBQhMDjwXQ1iftj77InFSx%2FPG5%2BthTmia7V%2FZtzQH9WKi3e6hHfEuvc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913ee0b5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/css/animate.css

188.114.96.1

200 OK

78 kB

URL GET HTTP/3
dgr2.krafton-news.com/css/animate.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ASCII text
Size
78 kB (77906 bytes)
Hash
8eae1a9cfafdc593321d4d59ec4905ea
232f5f3f4c3a0a56823e0e933f9c7fec3aa9cbcc
e89c81987c5cbc157097eaa6657d6a594abf030cc89bb63f0d2154d8383e9fab

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /css/animate.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sat, 16 Dec 2023 21:02:46 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lwqjeFORt5FJboMHmpzJ%2BzcBzofr1BYvnHZe6xbgd2xo5Mc%2Brsu2pR6ulX535drY8Nlgh4JvATstYYzxT66qLlwceuzAJF3%2BRXQoMTHJ18xQnIkl2l0oYM6zKK%2BnZMklf5W8NCM9DbY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69136db25693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/media/close.mp3

188.114.96.1

206 Partial Content

13 kB

URL GET HTTP/3
dgr2.krafton-news.com/media/close.mp3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo
Size
13 kB (12675 bytes)
Hash
2056bdcfbd551273ee207f8c6ff9d257
6fe68c9917d3409710aee4147ada311093d33ba6
d7633fdf0d543880acc3fdaf578728d7becc1ff429ba054921d3313f73a5a4a7

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /media/close.mp3 HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 206 Partial Content
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: audio/mpeg
content-length: 12675
last-modified: Sun, 02 Oct 2022 09:58:58 GMT
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: EXPIRED
content-range: bytes 0-12674/12675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3gve8X6UbIjlMPvaHo5zLu1704r2yqH8d%2FJ0sCS4x5Yr8UiUM8EwHJ8h2nntpptGx4e%2F6J2b%2FSh6r80V2RTfrwRBEJsEvgQJiO3ASyzSgFnhz93%2FkoRdaa%2FoyXHnGIwPWkhYuKm3Jqc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691c79815693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/js/international-telephone-input.js

188.114.96.1

200 OK

463 kB

URL GET HTTP/3
dgr2.krafton-news.com/js/international-telephone-input.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type

Size
463 kB (462811 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /js/international-telephone-input.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Wed, 17 Jan 2024 21:18:10 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PUdzxbQsXwZLooUDDtw29%2FkA58IL2x%2FG8l3Yen6qpHw5MezTHEn82RYGr1bN9%2BoodTarZrof8oJlOByVVW1jxuv2PFpA9QDChXUF4pfuxfUtRiHg3Ipd%2Ffi5hoKPMNHGLLbKR96M4%2FM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913ee065693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/js/link.js

188.114.96.1

200 OK

5.8 kB

URL GET HTTP/3
dgr2.krafton-news.com/js/link.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
JavaScript source, ASCII text, with very long lines (6170), with no line terminators
Size
5.8 kB (5808 bytes)
Hash
65315cf90f144d0cbddc2d3a6daf1392
c9bbca06b98d0659ebfb226aea0e8a21cd9add68
ab6752a2d0b3a4b988fbcd7d43003a06525882d2a60d36685720c8d57ca70c80

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /js/link.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Tue, 19 Mar 2024 14:26:00 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XdWlFO2t%2Fjccg5reb8RSmevNO%2BzCKDn9lUqG32Z9y9ecdx9Hu5waAzSUa2bbvYr%2BrBH8%2FUWZC%2Bm6a8fvw7s0vNW8vT%2F9foi9qRNMZ6CirH%2F2hPlTEPIiaOCc2RqzhHd9hROpYMTU9Rs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913fe155693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/css/international-telephone-input.css

188.114.96.1

200 OK

20 kB

URL GET HTTP/3
dgr2.krafton-news.com/css/international-telephone-input.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ASCII text
Size
20 kB (20032 bytes)
Hash
631156c56e9b146c0450dacd7936a501
25c764014596c5d5508e203967dd813facb8374c
96871ae895184625a43089fe99a501ba47f217eb7935996e44450b16266f000c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /css/international-telephone-input.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Wed, 17 Jan 2024 21:21:32 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fIMC69mv3JJeM10%2FJVgefeT3CjUydhm7B1mymOXrUH4ww0Qm1dSez14XvP8HmJe8dCWG7znqiRDspGgRtcEjfE446vLioJB%2FNqCzJHCKbqHk64BA%2BkRJqGmvxnAjWKPhLTrk4YU0caI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69137dbc5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/css/mantap.css

188.114.96.1

200 OK

1.8 kB

URL GET HTTP/3
dgr2.krafton-news.com/css/mantap.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ASCII text, with very long lines (1934), with no line terminators
Size
1.8 kB (1768 bytes)
Hash
596f8e18d1dcf9f1552053b2f2324b89
191323178ee673cbc1c48f623cab68e6c5ea1300
8a8846023357ac2706049e87737f5d9dbccd7b362b2ba498bb9ee32f748711a6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /css/mantap.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Fri, 09 Feb 2024 14:40:42 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6BE73DCQ%2BodJxu5AQMRjx7jnCttymEiJlfkX1amqqCQOYSzYX1Z8mrvTcBViCTf6jnQBUbfHMYLE5bxd5eBffyrAPiygE%2BDlZJA9%2F%2BPUpK%2BDahhBs148gjI3jebsUpjj1vI%2FY6NeZVs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69137db75693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/bg.jpg

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/bg.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
14 kB (13501 bytes)
Hash
6be4c166a312ed8aff1855a327a42061
c9e974d6db34cfb3ea0b08d7e2cec303710efe3a
c1a13284e1208e2e87224d4dbe48ff47311c93c538795262095e7f1fe49ce083

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/bg.jpg HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/jpeg
content-length: 13501
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sun, 24 Mar 2024 14:23:36 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QSECEfE5c%2Bv%2Bmpv4N8XkXQ2ypDd0HcIHR0aM6rXL8CKUzTl5HAasyK9VTVSLU2EkVVjjH6kzb%2FrzJ8bWG7hchFke6K7eeg6Pw2m%2Fnq8Lbybm%2B2ENXEu5I0bQ392RzYKscIp84UL5j0I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df835693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/media/putaran.mp3

188.114.96.1

404 Not Found

1.2 kB

URL GET HTTP/3
dgr2.krafton-news.com/media/putaran.mp3
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
HTML document, ASCII text, with very long lines (1276), with no line terminators
Size
1.2 kB (1238 bytes)
Hash
24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /media/putaran.mp3 HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ithRIHS9VQg7HLF%2Fbls2%2B%2FOxI0Pq2JxLUJkwNCdtdqZSEgO646fJHLmmtk%2BI%2BDEl6M8%2F9RWrseJRaAZ4rfFk9TRhrxRsAwsqwHjZvW6%2BYJAfdZu3Zqt0N8kFliDrQRdz90wEUfyYPzs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6919782e5693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/bjsd-box.png

188.114.96.1

200 OK

4.1 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/bjsd-box.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
4.1 kB (4085 bytes)
Hash
58b7831a59022115d35052df19abab41
8077bd08efa97f0900be2a4a11e25f0c2b874e2b
221050ccb466738b763c2ccac55da3a9c27af244ad43b596841f5213b4854e30

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/bjsd-box.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 4085
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sat, 23 Mar 2024 04:16:06 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mt7q1EqielKEIteMDFhQpJS31ktgb%2B3YBDG%2Bh3sciWN4Cl3J0PgaZAfWcqFhGyG9RwAQrokvJO6KFwmbcSrscVAfOWN3jJ94DHZqtf0mWclDTZM218mvNk8rG5wsIguV5eRKQZ6F270%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df875693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/css/fonts/selow.woff

188.114.96.1

404 Not Found

1.2 kB

URL GET HTTP/3
dgr2.krafton-news.com/css/fonts/selow.woff
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
HTML document, ASCII text, with very long lines (1276), with no line terminators
Size
1.2 kB (1238 bytes)
Hash
24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /css/fonts/selow.woff HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xjQWbo1MAHCHkqgeOK8FLXi1pF1huEoIKqXqhZFijoWkO%2Fasp4wvyYxipmpTaiMYUZPhwVdxoeX99o4PuX2lHwOaXYP3GmLjDweDZFfE%2BVSzApxQDGDdEEr0gWArlaQXlXXLZRH5RBg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691b58d95693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/bg.png

188.114.96.1

404 Not Found

1.2 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/bg.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
HTML document, ASCII text, with very long lines (1276), with no line terminators
Size
1.2 kB (1238 bytes)
Hash
24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/bg.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rFdxWujrt470phf%2Bv9hECHHO8QLFx56HoC7EyXnsqoRx8ywssLPze%2BcXUf5C0QC%2F6D9kFUYHbVjyepjMuxTrovRd7wlE8JWdxoIzzojlW%2BDKyklADv%2B0ZbC3NH9kFvUsg6YIW8Gluow%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df815693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

188.114.96.1

302 Found

7.8 kB

URL GET HTTP/3
dgr2.krafton-news.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type

Size
7.8 kB (7769 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Fri, 29 Mar 2024 05:20:25 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js
access-control-allow-origin: *
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=26c1d3DVxxLLQLFFY5DeZ2D%2B7L7q82m5wROCJiKxQKxzp1X6CDRQSpKOZQWN3CmU%2B4UTi9B%2BJ0VEB69kuwEEEhZpdXPM8O1zt%2F4pQCuiJakJpRDMgrLGnCQeZrbkMm1WBAu2VJEhP4g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691c69795693-OSL
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/css/fonts/selow.ttf

188.114.96.1

404 Not Found

1.2 kB

URL GET HTTP/3
dgr2.krafton-news.com/css/fonts/selow.ttf
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
HTML document, ASCII text, with very long lines (1276), with no line terminators
Size
1.2 kB (1238 bytes)
Hash
24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /css/fonts/selow.ttf HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N0C4AHO6iI7mqfs%2BSz3YUHL8v22Y3pz%2B72t15XYr931UDAg%2FuLbhmyqGLmSMIB72IkADC%2B7dDQt%2BKoax2LFEddfn088e4AA37tZJ74s66t01xLg08fcPVY6n08AkeWB9hIhpMwhEUZc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691c29625693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/js/click.js

188.114.96.1

200 OK

1.1 kB

URL GET HTTP/3
dgr2.krafton-news.com/js/click.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ASCII text, with very long lines (1170), with no line terminators
Size
1.1 kB (1101 bytes)
Hash
4555c10dd47ed1b66e2457238def054a
cadff197aeff8f5327a139a7f250ad444d7ce05e
e00e5f480582888e37bbd0f1dbddc8d9c1d175ea950c76085720bd124410504a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /js/click.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Fri, 09 Feb 2024 14:38:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HKzsF716aJW7dAXPqTOb4NOSdDW0e1V%2F3GCvoc%2FNMMt0Z8sjELI1ZrYGrpLVvkjyJe7RMnDjvhG%2F1nGHgKk0RLjYTbmvNlueGXQPtRxHeKQLY64GwNbxRrGbRf%2F%2FcSkBAyT930E%2BHa8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913fe115693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dgr2.krafton-news.com/img/title.png

188.114.96.1

200 OK

28 kB

URL GET HTTP/3
dgr2.krafton-news.com/img/title.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dgr2.krafton-news.com/
Certificate
IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT

File type
ISO Media, AVIF Image
Size
28 kB (28149 bytes)
Hash
235ed2643e0492d22e854c16d453a3c6
b0976235222947b9f3a280a2497eba930bc88017
6e7c226a98b4a89db522eb4628bd409b23aa8c82e3f5842a064cb9a369be7b20

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Tencent

HTTP Headers

GET /img/title.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 28149
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sun, 24 Mar 2024 14:19:06 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BQKxHPKHM1ixdSgIOLGVJ8nW0tuDEiXM2TuuUcYEyRZGVNIEGuvklYpnXh2qkUqidDuG5P0ByiSeo4Cev6H4cJruxyQy8cwnU90NGDKPnp%2FJB6v3Q7lYbndlry%2FLzwoSmgRiLUNgXTo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df865693-OSL
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (118)

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by