cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css
104.17.25.14200 OK 19 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css
IP 104.17.25.14:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (52276)
Hash 5222e06b77a1692fa2520a219840e6be
8b4236206a8b86af3761a244277663046d7ff7ee
0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 713723
expires: Wed, 19 Mar 2025 05:20:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b3EgLl%2FizlMJPpPQU6zf0RuIYvGy%2FAkyl8IlK63jnxMOBnyfTjh8Nu71L7vS2CLAWfgmCSoiyFh1cODfCfqH%2FZEUeS4r7KOM%2BaWFFNP2LCJMBkUOHb317p%2BmHYDFp011%2F5aww%2Fna"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bd6913c8edb4f9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
104.17.25.14200 OK 5.8 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
IP 104.17.25.14:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash e9365fe85b7e4db79a87015e52c3db6c
2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9
dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 552972
expires: Wed, 19 Mar 2025 05:20:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FSXgPU%2FJ98d%2FwDyvn%2FhsiMCWqJT9UKYkksHiT2fUfoMg%2F9iCIb7WuHbL0XnUJ2roxHH%2BPkAoqSrtjMw8XQ0H3K3UGWkGPDiAeGx6fb2Cwvexdi9KH2hqR7PczfVsLjCd5GqRIR9s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bd6913d8efb4f9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-1.10.2.min.js
151.101.194.137200 OK 33 kB URL GET HTTP/2 code.jquery.com/jquery-1.10.2.min.js
IP 151.101.194.137:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (32072)
Hash 628072e7212db1e8cdacb22b21752cda
0511abe9863c2ea7084efa7e24d1d86c5b3974f1
0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-16bb3"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 29 Mar 2024 05:20:23 GMT
age: 16889017
x-served-by: cache-lga13622-LGA, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 1, 17899
x-timer: S1711689624.708115,VS0,VE0
vary: Accept-Encoding
content-length: 32788
X-Firefox-Spdy: h2
i.ibb.co/PYpHF6b/Twitter-Show-Password.png
162.19.58.157200 OK 28 kB URL GET HTTP/2 i.ibb.co/PYpHF6b/Twitter-Show-Password.png
IP 162.19.58.157:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT
File type PNG image data, 656 x 656, 8-bit/color RGBA, non-interlaced
Hash 2fd203703821d5ce5d18bee2a51b779a
a78d7b1369ce8bc34de57909af142043cae446f0
6b82611fa96f118128b0db9692dd982ca0fe79b1b4d8048946880600cc4f97c8
GET /PYpHF6b/Twitter-Show-Password.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 28355
last-modified: Tue, 17 Jan 2023 04:04:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.ibb.co/rkwGGNP/priv-laz.png
162.19.58.157200 OK 22 kB URL GET HTTP/2 i.ibb.co/rkwGGNP/priv-laz.png
IP 162.19.58.157:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT
File type PNG image data, 640 x 27, 8-bit/color RGBA, non-interlaced
Hash 1614c76ad387e039ab30176fb0911394
1c8a3e0a559cfd25924765beb7c8cbd02a72876c
f41959ed9be5b73b31b0f1b11b818bd02345e42a394e53f6dabd92715c0abbd8
GET /rkwGGNP/priv-laz.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 22526
last-modified: Sat, 14 Oct 2023 17:39:12 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
i.ibb.co/pZDr8sd/Twitter-Hide-Password.png
162.19.58.157200 OK 28 kB URL GET HTTP/2 i.ibb.co/pZDr8sd/Twitter-Hide-Password.png
IP 162.19.58.157:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectibb.co
Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62
ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT
File type PNG image data, 656 x 656, 8-bit/color RGBA, non-interlaced
Hash 8d1f08b46884df302bf7300fc234832c
5735d57b6fa211c400d439095d5ff2f5bb57e691
e4cff1f68b85c3343554090b3479273a54e5eed2dbb3e56ceb9f86c4ebe8b0e7
GET /pZDr8sd/Twitter-Hide-Password.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 28029
last-modified: Tue, 17 Jan 2023 04:04:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
dgr2.krafton-news.com/img/rewards/@8.png
188.114.96.1200 OK 10 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@8.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 03bc86d79c23cfeea51b2b8eda23c7dc
61e93587af2366ffbb738e584b002d3ee3fa4ca2
4b3ddf3934ef8436c8fdebff20f5d11e9047b648e2aa7b3780c690177f7e1273
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@8.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 10324
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YecvSgTbSsZfy8V1glqLMGQZZrOr2aeeFlW90yDVC7a%2FIaHeVlbkB6VHxSqkcIPK9R%2FVPbteCt6Iqmh%2Fzv%2Fo9S5zKMHa9hGa5zArY3b%2BjYnaYOp8xEOkaOp4wZIla9vvCW7ebidi0zA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add65693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@9.png
188.114.96.1200 OK 12 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@9.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 2bf71442e31519b8f152711285621837
c06b0f9d2039b3e3f4c5ce0333f6373d21c4fcc6
ecf9461f4dd7d6ad7ed59f142eb998ebd644cd36e8616a1f02e2320906545a77
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@9.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 11655
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hbP9FGvK1Xv%2FYeMFBvg9Aq8SY1x%2B9QdYN5TWV6LU33iePvg8zSGe5RBArDdkes5hRQxi2PJHJQNIt9HiQkcqXWmBRMBGa9x%2BT%2FYNQyOLlhuLDCLVkd6cD9%2FG%2FkZh8oF4ytY7%2F%2F8ySRA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add75693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@5.png
188.114.96.1200 OK 6.3 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@5.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 3b423d4ef92ad6d2bfcc3e1529a2824f
8dbcc17e4e128971295da0a1873db7c08bb6c248
02562d24546c25d6f7264a8d0109de0027d32ec853ceb9990fd8a2623f619bdd
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@5.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 6265
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2O9Ev7arzcYAmo%2Bez%2B7NOraBKurZduZ7GFn3Xn8E2ay%2BnpuhVnKmb3RsHaU3xRIwgawf6pjj0A%2B0oNEuCOl9DyKdmFmGZzrpqqtQRDak4chVVXRz2skOq7f3KU6JVXiiDNAm08zzJbs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add35693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@12.png
188.114.96.1200 OK 9.1 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@12.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 101c24571acf810800605eed4acf1bea
8b66eb1221242853c02933ea892dfe0972018d44
34b8516a5f4c24ce8f10bece77c68aee55c68e4fdac793c207c4cc354efaa2b4
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@12.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 9149
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mOu0YMnsYkPfanlGX4L%2BRa9cGqfnuu1LhuXISjOKsOJ9LP2lor1Zw1hNA96byD0nY71MMC25WSbrYatWWE%2Bj91hz6pp3ClyiCpuiU7V3AMZvcumRBDiMVyleguP2U98LUgfltQZ0pyo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bdda5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@14.png
188.114.96.1200 OK 5.5 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@14.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 9ea310ab15ba84c0e054b254b81c11c1
bf56d2ab904e04ff6576539e6d7fb9647fa692e8
0c1297b97baf1f0339362891f3a05be6d499fcd16fcacb31a4caa684d2d4ac83
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@14.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 5492
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pd1t%2B6op6fih0alIEXZqhJzcxIdrMPwuzVg7NxmbIU7UMS8iN4acR4CuJYF0wLvZmqvq2n0HIYeEJsF%2BiTnBOXKVOJv8OMrD7pMJ4RQybLKINKZv2VM5dryj7VSyZ%2BsE4nzbAhr81zA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bddc5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@6.png
188.114.96.1200 OK 6.5 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@6.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash d902ff925e16b2877488d4496ffe4fbc
5b5270fc2b129bca24fcc7627d577b3062e75aae
0336a2f488beb40037f7d4961674b55d081815c9455ba9026718035b438f2801
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@6.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 6472
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RJc9oGbdaGs%2F1IifSTsobbm8OgCXo1fRPoCjuqWNnyBVkm298nk6Wg5sVhi6JPJafm2M1%2FgJdogjPjogHOQ%2FssA4qCTcfnomMiL14xtOwq%2BDvGhikr7oszp0lOHgAEZfQn%2F%2FNwcnxi0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add45693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/footer-socmed-6.png
188.114.96.1200 OK 1.3 kB URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/footer-socmed-6.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 184 x 140, 8-bit colormap, non-interlaced
Hash 1700e2a7e8f71b522591ba0c621c0d59
6d15ce633979efdc98c0bd756626a1b5453dff7b
dcf3f1273924bc3c6ee68ede1ebf3da0b49163fa60742b7c4045cd298a3596a4
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/footer-socmed-6.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 1335
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8DJaX22F43GGaNeuA0CHUpnQ6N3p4qePTZe0s1DrmKi2iVaD%2F03ZhCVQfvonJ5xfozBKI5T19CPkjlzd%2B%2BreGlnuwewEm54Gbzwv7WpcT7wZz6Ts1YGCKK5kEtJQuYLGOlWBoZzRoeQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdee5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/footer-socmed-1.png
188.114.96.1200 OK 268 B URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/footer-socmed-1.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced
Hash adbd18e84262ab084bd3df2dfd4bab1f
36977069dd06949eff7dde3aad14c4801e44d324
20b7d3871d1a6ad6187e20a6c5f8a27b347e0060bc016e882026a55d0b0cff60
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/footer-socmed-1.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 268
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c1mgaI1yIRyjNKF6xWRKVGKPvEUq7Jn96eAagAwVu0aIz3%2B9LMmuU6vkODsvNjoVsBOJ5iT5CkX9EYww4iSuyhpKDosSxYKErkCLdqiM5a6bUropjcJk0uj97KKHthAPIeTWVfx8oCI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bde85693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/close.png
188.114.96.1200 OK 1.8 kB URL GET HTTP/3 dgr2.krafton-news.com/img/close.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash ff9eb1146bcb3dbfbf16220d0231c996
89622c66b5a76a76e46973573f3229dc006cb516
4a34729b7987ae81a36dc378c7928ee1fe9514e5be8729836170524cdcef9936
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/close.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 1812
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:19:08 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yjwwolGz9ichSQxIOJGvUW3TvEvZVronsx7X36rDQ7DWnuSqiFoEo3wTWAaUW41%2BnNnWdVrNOdKAOp%2F%2BaaoZgYZQNwl88UDe2KmczcpXUARZ8PyjtDELq%2BtYIfxlwXjdblPTgEvz35E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf15693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/footer-socmed-2.png
188.114.96.1200 OK 461 B URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/footer-socmed-2.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 51 x 42, 8-bit colormap, non-interlaced
Hash b5448202d3c938d562e54f56b17d0fca
db8d27e773905767adcf0415e91626d3c43fbd31
85114b53d0a02d02821cf1a4995af771fa250e9e3f1db1084813b8488bf73be7
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/footer-socmed-2.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 461
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cN3MxkDXRiqfReKnzczp%2ByUU%2FiA9LZQ%2Fgm0Sb89QQYXORt5o1tyfEob8EZc176E0sAWWNM4qxtfhMqFHjQH%2Bxq4nl%2Fr%2FYwZDYCqg%2BcZj%2BWMuMoNSzkQNrhFnU%2BvtDbPsM5cCykkZ6Ks%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bde95693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/footer.png
188.114.96.1200 OK 11 kB URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/footer.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 1280 x 189, 8-bit colormap, non-interlaced
Hash 32889c5fbf8cec8faa42790909ea87fc
e488378d68cf7e3ece34af65dd8304af28d03b25
84da6c65dc61e0e1cdbf7c6b5907587735506c60ee57e3e4c6ef0e4db01ff121
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/footer.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 11417
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QNpPl%2F0UtZhjS7H3GGpgs5fMFI9UbE6tAULEfwZYfXdrAKgDvnOTesvf712cZLxRLcs%2BSHHm9Q3fqyS2pvtLT14iP%2Fj7ceLcWeKAuyjqvmSzml2nAr%2FiRZLuMgX28bJJkxnUmryluRg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdef5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/alert.png
188.114.96.1200 OK 1.4 kB URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/alert.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 86 x 86, 8-bit colormap, non-interlaced
Hash 327ea64535eee3e1f15928af0dd777f1
801ad514b63320f1ff3f67639541dd8f6b183ee3
216f255489742dd9f579864a0938683a065dc2921d5c12ba30752b953e2929d8
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/alert.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 1364
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Thu, 04 Jan 2024 17:35:40 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5XmiydkwTHEd6MHXnRlwWW5qAT95Bi3wet5I3TQHGW1%2BjHB920Vc4bcvztIs%2F%2BgsUv%2Fv%2FCGMKoCtusER8iAc0yLxpa4MdUmwAGVsSCAcVdioA3T9Vkz9CHthnGewt5Zxyn0obemnimE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf85693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@16.png
188.114.96.1200 OK 8.4 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@16.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash fdd5e9b3177685ceb032fd31d5f084b1
df7aa1ad78c957c3925e5ee0b429676462033785
77c4de10d8b46f8058e121ad9e35b753e3a281fb89dbf74cb62958ce6619a388
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@16.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 8437
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:24 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o2UwvpqP%2FrGCO%2BHlF5ltIMAckiAml8IgrGRmoL3jiHsNQ5EMvoeiNKNt3jB4kiUxiwovFscnJ97cX65ImoazcWfv4w0JxN4a9QbgGWX90gmFaadqYTboKnCX680Ci02QMBKs0taaQOQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bde05693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@11.png
188.114.96.1200 OK 12 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@11.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 29fc9c18fa89b42f7fab5d4b32f04524
2bec99b44b984b42d2420f71295199a4d90ef34b
5ff6dd5ef05ecefc148dc067df0809ba9e97e714d0188b4ad350009687bc767e
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@11.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 12288
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kBNyHEC%2BhO%2B63eQeirLFIjY04sryKltnRU78ga%2BeZRvVMJSwv3NuV%2BKU6PJ9IFcKFu7U7Eq7LKX7SJ%2FwYMkocWNpd%2FSo3Ffnd19CawyA7lSRz%2Bv2JftO0uUcFnTUOHa2%2BPSHL%2FOBRHw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add95693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@18.png
188.114.96.1200 OK 4.6 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@18.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 87a7c28c23927dc93fcbded6be9e4ec1
16ba2595e9259b8e5c7ce96a240ffe7f04beda6d
cca4bca902ead08e55a432bedc9b0d7d26800d68079502e15cb2b6c8fab94362
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@18.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 4553
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SW3R5YTkURz8FSkdu%2Fw8s2MTNtmb0%2BNZ4JC%2BnH7LB%2F46iDz%2FzQ3W03tYeI762zNcwA51a%2FFMsnNx%2B%2FBWcNNzDgf%2BQzxtScWBDT1gPKaZYx5QLJOULv4pDShxmMYpwivk8Q%2Brq%2FSLVjI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bde55693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@4.png
188.114.96.1200 OK 9.3 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@4.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 435be4a6aa47769bebaccfc46a137899
a26dec5ded18c6241db0d582c95cd478c498df2d
71075ebe28ac597db112ce95af914f87923bec45059e804de4f483729c5b1238
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@4.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 9340
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:32 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T3R0KX%2B%2FL6WpK9km%2BH4AUrKt%2FdF04rm7PzDLoCbhwTnqCB1PdQWxY1k5S%2B%2Fn04bGn%2FLYe1tFVl6Fa0Ji2bW7jWzsiyH%2FKXJmJPQbfbpE%2ByH69Acehw%2F7iGkvUFxT0YAohVORNzQsoFo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add25693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@13.png
188.114.96.1200 OK 10 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@13.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash f0e76f5608964edb12a6991a1fa5aeb9
1bf568acc65662bdb155404d04d8b6a0455afc09
91e5293cc9aa33f06dd20d26fc612e8545cceabda3ac45dc8e7bc6c015aa7d60
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@13.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 10289
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iOcXZH6P79aSF%2BxPrDwVTmuQQ%2FR83VvaBoj60TWh1b9tfQl%2Branx%2BILnZWQTsoTi5njAK8f484I1rRXaQxF2P7uwU0z2Pdajfb6%2BvM1OW385lkqDDDKmaGttdvGBANpjYoMzFRwelr4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bddb5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/footer-socmed-5.png
188.114.96.1200 OK 392 B URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/footer-socmed-5.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 51 x 51, 8-bit colormap, non-interlaced
Hash ae488386911b28a42846d0d9df6b8c58
54d1a2b9321c53634b9f45f64f2a1e224d78bc7b
567be788b1f03b45c11b75753e55aba755ca3091de71f34bb056e4c5ffc299dc
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/footer-socmed-5.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 392
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YCcy6ZYet4M8nQ8HBAnVscpz%2FprV%2F3xUqNXUXGMbvT1qcUhqpVFYvqFXvEWLUOwJQkbAB%2FwNFahytZIgN5clv7E96ooSARAq2pmP8vOsXabAE8WSc8yD3Rn2Q6sSx%2Bj1jT0G2rXYA4s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cded5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/icon_fb.png
188.114.96.1200 OK 4.5 kB URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/icon_fb.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced
Hash 55eef055b7e3c9a7b01e75bf1d946602
298bedf186fdcc606901513a2edbb5bc3ca233e6
9af17159dff494810a71a37678db1df805f264b935730d1c2e5a4d970305917f
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/icon_fb.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 4549
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Thu, 04 Jan 2024 17:35:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J7a4teegvo4O0uk940ilSQUGhgn2wECHffBm8dzM5w%2FgECkcwh0oO2WGQ0OfOXkcRZoJA9GQwR%2F%2BV3QAki6Xsvas54kejreBObAyaGfOxELy7ZL58V6KA91fVTRb%2BJ%2Bk4sMuZnMfcTY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913ddfb5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/footer-socmed-4.png
188.114.96.1200 OK 450 B URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/footer-socmed-4.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced
Hash 50e84b21b03baad8e7c331bbc41a3989
3007786bca7260f59f4b89371c60dee440930aa0
e9b6b6f470a5ad6c59e1b418d41c539f2aa905ebda9e6ddf3b42bafc0e244474
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/footer-socmed-4.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 450
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BP6bq72rBF%2FE%2FMqfHUd2LregCAy9yY3PHJ%2BSkb1Vtdw533dxU8vaL1gYF%2FbX7uZy2fMvGj%2FeR5HEkBrauFwVZ053BZZc7I2kUE9K4a0YMPnM1pnqu714Gl6DRUFmjDlHC%2FNXZ6jiIfE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bdec5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/closed.png
188.114.96.1200 OK 444 B URL GET HTTP/3 dgr2.krafton-news.com/img/closed.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 43 x 45, 8-bit colormap, non-interlaced
Hash 5659d0fc21341bd1cb9823da04d89242
2c8b3e0851913bb30863b7cca3032970fa84b3a2
dd93289262dcf48834e9dbb09685d665f1a2782ccc2d201c6dbfda9c4c81c14f
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/closed.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 444
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Tue, 19 Mar 2024 13:54:36 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kbC2iOjV0pOBSkGe7xdrlzErmpVh%2BGsYdCNzFWzX%2F8xWzB5xCRxsIR%2BHmVQgemv%2B4NwJyHgzToQXcFyb%2FVy%2FeWyMFiDdV7l6wVbtc0sU4sV7vWhyXAoo%2BdlIgf8lY5xlFlLtL%2BX%2BGPI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf45693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/link.png
188.114.96.1200 OK 1.3 kB URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/link.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 77 x 74, 4-bit colormap, non-interlaced
Hash 476dd0272e48a57b6613b95183c99c45
d096fda3dc49d5dc316ed09546a4f0e84b77afb9
4c1da8237e48062e54e64a2b3c440520bac92db38b2f9fa57692d5a5f3ab2454
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/link.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 1285
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Tue, 19 Mar 2024 13:54:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ePOJcMPTvfKs0BJOM59l3nQXP12yqlZHusDhV1QlYacDjwl7EuvPK%2FrbouS8afDMnabmz9Kgazc193hstSL3rfU1M8MpjHZ5Qp0A5r%2FcAdemhJWJbhDH70%2Bbumh73XyNU9WmHskKWXg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf25693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@15.png
188.114.96.1200 OK 8.1 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@15.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 3f1d04157f560debe40f11f4ffcba68c
bef8671e1f4b3689cb801dd8b27b0129761f11c5
c05d609df474e34865036ee0862d7f783cbd7dfb60f2dae2a8c69c6f7a706ab2
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@15.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 8070
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o1cjM7TEkCBjghN3Gh9OIv%2FO6uhtYaURx%2F%2FURYndbvSQxZIucnM8uQdP8QTjha8p05%2Fed%2FZ%2BM6ibUPufhIBZ10UAoSZ7PdV3iPeIsM6HNnQMzGPjCI2mm5RzQHM%2BmaRGTs1DbuIcEyQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bddf5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/footer-socmed-3.png
188.114.96.1200 OK 374 B URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/footer-socmed-3.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 52 x 37, 8-bit colormap, non-interlaced
Hash 2cab6a226c0a13d7135a52207c444300
1b25d6a6a67ae82e3e74fda39d72982e5a109e33
b6af1febcf285505241c3b539b152fe148e7a96a739ecf18a67825cd162cabb6
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/footer-socmed-3.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 374
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1ruVOQ5cmURgUekQXcqklveeB%2FYcclQCk5hDYWmebmo%2BOrLexwO6m2XJ7YcLddbLpxzMh6w%2Bttm9Qls47X5YPNLZ9afyOjbpdPTwuuKumD%2BEU3EPJiC1%2Fa%2B5S2b953e8d4vm92wFL%2B8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bdea5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/icon-twitter.png
188.114.96.1200 OK 1.4 kB URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/icon-twitter.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 86 x 86, 8-bit colormap, non-interlaced
Hash 3d3b9b1a933b235c0df9276d27446be4
c944d8b18cd63af80e162f7666c2f3d0e31b52c7
680895b54f5fb8868f7ede5dff4744177806d75aaef81219ac38260b32a4cfd1
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/icon-twitter.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 1393
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Thu, 04 Jan 2024 17:35:44 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mTBWuQLvlizgPk%2BL%2FqLEo0da8jbtA0WLmywVcEXJ7UuJW5862Fa3DoZyEK2BI4Jw%2FXToSvefv1um%2BkBNbCg659caLRDIGGQVfuIJ4pLmEKcayUn618nCubjw73CiIRwwbLOKbG76CAY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf65693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/icon-facebook.png
188.114.96.1200 OK 5.5 kB URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/icon-facebook.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 1024 x 1024, 8-bit colormap, non-interlaced
Hash 2d797a69acc678581d3a4ea0fb0636ed
3c13f1b3e8fa01cc284ed3492dcb2efd447d06bc
44a4d8218d1a959cd0ff8d764fcf5306aeb21e1689725b63825bd7ee79186baa
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/icon-facebook.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 5468
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Thu, 04 Jan 2024 17:35:42 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tEwYZy8aaqSvI68GlczrgBYqAV%2BYMtGWnTyczS3UQQzpwTpLHSNuzjfnGYm%2F6GS4pnnY%2FxGOB5j6dqIC2wxS9qbIXXum2NEgRC6W6Q0B5jBBIS4BTHqr8ba9rOyH3S2CAHfSp3z%2FM04%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913ddfa5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/kotak.png
188.114.96.1200 OK 12 kB URL GET HTTP/3 dgr2.krafton-news.com/img/kotak.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 396 x 396, 4-bit colormap, non-interlaced
Hash bee0c08daeb68d97746f29ce06af0de9
3995c31366aa7b825185f3b5dbce30d84e5b7eb2
1f518c9810b665cb5dc1744c8469c19bfc5abe970686d8c933614409776089fc
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/kotak.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 12439
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Wed, 13 Mar 2024 14:12:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5rVvTi9EPw%2FBDUrEaljR%2FUfcmaP%2BMROxXHHthMYtYNBbZHrx6LaoZJsoM4lB2niZJFODe13%2FQXT3DQWHlpUd9og0%2Bkweiw3DyX6rCQU51xw2r1P0FLT2IoUvR2z%2Byw9j%2BGB6O9H8mCw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913ee045693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/load.gif
188.114.96.1200 OK 2.4 kB URL GET HTTP/3 dgr2.krafton-news.com/img/load.gif
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type GIF image data, version 89a, 164 x 38
Hash 4d6f2e21a528b9bf09013864360288da
606e36c12fcbcb77fe9447b2e22e94ff9b03b04d
1c732615efde8aa29b32a71450c55d5d574a9f154eeb58baa8456de160ee6b1d
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/load.gif HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/gif
content-length: 2427
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Wed, 13 Mar 2024 14:12:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z9gOwv%2BaDXp2M0iT%2BLqlh0yX%2BA6PgK6aW8nUyC6%2FK934nZkNIrjabKLt579v%2By4%2FbPniNZrhMLmXWDccVFbBNKzYwI08NRMs1wJDIgHadT6XQWW4qVKroWbElmHIrGCPQ%2BaFBa1c6uc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913ee035693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@7.png
188.114.96.1200 OK 17 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@7.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 828a6da0a91fe90991560c72072af863
aaaae440237f3a5dc24158c9a0b23a250d0340a2
f74c463e97634b1b8d58a2ae26f902f8f443c495b365fe982d22a7ea2e58f7ab
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@7.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 16763
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f4tm1hD8PmEqcxDZ3mLFEIrb5KmI6%2B%2Fj2A66PRN2DBVzYz9k0H2neHxEqv3i9RCypRuhtBV0D3BWgZQ1g3obaUQhU5dmMqYazUlZfGKUzFjyUPP%2BULrpVu0DvtPuMxXN5tZSZsYLXyA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add55693-OSL
alt-svc: h3=":443"; ma=86400
ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
142.250.74.106200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
IP 142.250.74.106:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B
ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
File type JavaScript source, ASCII text, with very long lines (32061)
Hash e40ec2161fe7993196f23c8a07346306
afb90752e0a90c24b7f724faca86c5f3d15d1178
874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4
GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:38:22 GMT
expires: Fri, 28 Mar 2025 17:38:22 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 42121
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dgr2.krafton-news.com/img/rewards/@17.png
188.114.96.1200 OK 15 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@17.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 880d2a422741b60ea0ce849ba86a18c0
34792be4f8db09ef139fb60bcb0ab6f40a003847
d661ebc14c81416e156c9610f61533f50d0cdb331768f30aff5bc8e78d00d5ad
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@17.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 14560
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:24 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qkelxR0%2B1Sp2SJfbhv6%2FSstZCIw%2F32sjvN0CZFEQUYrUwaK2NKZp%2FQYLdd0dkjQELzbEey%2FcP8Lar%2Bg%2FG8d3ImlitmbS7xBb8YI9QJexwOs8WvPLoB7ku%2FHbyoo2hn6CYsROyN9Vm3U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bde45693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/notif.png
188.114.96.1200 OK 21 kB URL GET HTTP/3 dgr2.krafton-news.com/img/notif.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 10fb2f7499d84efd3798ded9c810ca18
0b09367003cfef6faf130156fc4720e0d326739e
7d2df0e5213a11e95b30c953462dd32f5590266601d3e8db85910fac57e4f0ff
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/notif.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 21135
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:19:06 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nEdAdZExb7%2BKXUBV47ya1z4kigmL2Y9bk5SKfEBbR7MOoTpnf%2BTF4xzoAW4Eb1%2BXfkxP7nTP7Fwct5opjmjCshYYtCIa5It5kedYx3SysSmjF%2BsQP2Qb%2B4opdq7k3RK1wnwEZ0O%2FX50%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913bde75693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/login.png
188.114.96.1200 OK 15 kB URL GET HTTP/3 dgr2.krafton-news.com/img/login.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 35bb21d1f052f99b4e2b2249e170691f
f217a12c47f47a4d0257b0e9fbcbcc52688c7caa
96fc28bb4fae0d3744930fe3ba476a26202692eed4d5d4c950255684bf2f5099
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/login.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 14687
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:19:10 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GExB7dcmqOQ%2BG4sLlWiJif8GZtyJzbfMUoRJpwjzHOEqBZa7%2FoBR8HlwQKGh2hatWJUXi6Jxorl2y5T1kRA%2F6%2BR2KadY%2FBdV4MRPOsSWPfUHcksbBP2leUysxgBHFqY03luP1rk%2BtQM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf35693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@10.png
188.114.96.1200 OK 16 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@10.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash d4beb37ce435a76db449ac8cf0774044
9a8812cce948b6f69e62d2766d4cf351599b2396
4c8a2dc8c5abc472e041aa5c22b02a4ab56bba48835e7af9edd0bd4bcaf2e977
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@10.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 15912
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:30 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B8OWH6gOIlPHI8sT9yzofFwyLmP0klK0lFRMIhpDtPyaMJch4RU6ZzBg%2B2VENMmR4HTCsDtwkninoNd7clgcCS5Gaf79WSIiR9FXMHIoeXDmGMzhP%2BS904XAFsB8Bc9U8yDBudSdqDQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913add85693-OSL
alt-svc: h3=":443"; ma=86400
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
142.250.74.106200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP 142.250.74.106:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B
ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
File type JavaScript source, ASCII text, with very long lines (32180)
Hash 32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:21:57 GMT
expires: Fri, 28 Mar 2025 17:21:57 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 43106
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dgr2.krafton-news.com/img/rewards/@3.png
188.114.96.1200 OK 21 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@3.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 71a23963ab9e22bb314875ea24931232
00042735c6ea045378171525ad3d3472e243bcc0
0de74c26043872e05a618360d5e0d9025b4957c7ed1f0d33dee01b7d1e6b5441
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@3.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 21111
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:30 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XDpHfpNOd5ldIT830afEMgQB9eQWYvkZEriNgRh6ycb0H6vAyTeSIVryTo6Vp7FOcabY4OerGSzPLsXA5XCHt7ttSoXm0dEidIK4sGqNybswaa2paIedYgZzyjdmDt6Rra9EyvIPJ6U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913adcf5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/loading.png
188.114.96.1200 OK 1.8 kB URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/loading.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 88 x 88, 8-bit colormap, non-interlaced
Hash be33c96c2dcf2480abbddf2297b8fd7f
449c58d674ea49613fe2b4c9f0a76233b17852b9
ef850a1178d4da6a50c129158abe1c87870da1c01d0591633495258a3e6bf293
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/loading.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: image/png
content-length: 1752
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Thu, 04 Jan 2024 17:35:52 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FS68hB3ZVonlVge6eeXCNCOODc3Ind83cuieTtK1TXmTVTCS3qTDqk3ndvpaQqW%2B5%2FDuCQJqDChwqtkRVH2uOvNbTYpp8Prv7imI1nkEjejoAL2ifk21Pdtch4vc5AJPai16iPf9Gsw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913de025693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@1.png
188.114.96.1200 OK 17 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@1.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash e23b79f26d660e6630fffafdf335c40e
a1742ee52aaa1df051eb308787674b86a6d5fa0d
9376e47e09a529923777c2d4e1286c01e4999b91330cac9e04600fb9b36a13ea
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@1.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 16807
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:30 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m%2BP7afsRQ%2BvnWtKUmFNF06DU0PBFbaCBVzBKw8UCqnykhPR3o3TGrlFVF4WSI7GYkTpPxwVnIOLU4bofZQRgoNEn5DqabxwT0KWPHseAZWvwh9I41FWPGRWbI7FSUuKn6yFwo2pij2c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913adcc5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/rewards/@2.png
188.114.96.1200 OK 14 kB URL GET HTTP/3 dgr2.krafton-news.com/img/rewards/@2.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 49b0f84fd22f6f6aae4774164830f5fb
ef2d99e07946fc86d13702dff7435a16d81e16a0
eeb9306779e966c91b2f1ca7a9aba481d07053eb1bfa6c0c3a98f2da99e5cf2f
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/rewards/@2.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 14254
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:07:30 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=94a6D4dr6c5jAe%2FTBsRY50z9ezwGOo2LNM389XbXgkFdXlMM0oDqL%2BvRPubFKCZInCXU0s4kakQOsidLoZFCsrzBOmSjhXMT6p2aBD0wtznY8eB6WSmBA6SUonkjDqRovq%2BHSsrlXj4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913adce5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/logo.png
188.114.96.1200 OK 46 kB URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/logo.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type PNG image data, 1074 x 800, 4-bit colormap, non-interlaced
Hash 4ab4b2635f672e6846d590766716b71f
0d2ac2a2cc367e05645c8e9ef404f74bfcddae79
f729135f4ca3d6fc5e913c5f3165afd83e25c0fa01203a919f888de24148a5a2
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/logo.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 46315
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:58 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YVGin%2B00FpKAy%2B4El1Yh%2F%2BdnQf7a70b4KzV92LGe3ZfMN21MW4WxqSafm3eBnqpUm3pL7n1o1kj%2F0dlomlaZ%2B2MxTEl6QZjEArMPbSdgJhsybHnB0E4mTM6GT3Li8Pc1%2BeOr9c3NFGM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd69138dc35693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/style-img/icon_2.jpg
188.114.96.1200 OK 41 kB URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/icon_2.jpg
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 554x554, components 3
Hash 2d275ef78270a0c2fb8a8d736937c4e9
454cee8c58df4da6d570ed6bf66f34e29c74c07c
4313944f3dc763d16c92e15d8ae251fba1bbb9aced5da0716a56e68f75028f45
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/icon_2.jpg HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/jpeg
content-length: 41079
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rmAf4zty%2Br34E7JpWrCymMykzciWvPo9XWireQT7veQ0fs9wu%2BFFevtRE4T5OsiCxafbuno932CDCznCB%2B1ysXQhYBSy5FzYUG%2BLY3e2B%2ByuU2fdNtgXDhgCA0xd%2FpEBXOteUe3IE8s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913cdf75693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/header.jpg
188.114.96.1200 OK 43 kB URL GET HTTP/3 dgr2.krafton-news.com/img/header.jpg
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash d607158afa31ddb4e83814574b966d9d
20674ec5302c4305b0cc4deb98067e280f7e449a
5d526bd9ba22bf6f007f128d4c67d8c6985185677e27a133048416d3e13e8cc5
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/header.jpg HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/jpeg
content-length: 42557
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 19:52:16 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wz7PX%2F4G7Geo6PMg5%2Fssocv3J%2BDS4fu%2FsRvF8IF7c9Erq6nBzUnkGLdZESfXvDmlgfYod3lMyZXTm7vv4sZsH8npXX9yneDVhYHErwI9QasHfCLmiJVHl8qfqL5kip%2BZFf3my4UE%2BDE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913adcb5693-OSL
alt-svc: h3=":443"; ma=86400
www.pubgmobile.com/en/images/nav_shop.svg
95.101.11.144200 OK 526 B URL GET HTTP/2 www.pubgmobile.com/en/images/nav_shop.svg
IP 95.101.11.144:443
ASN #20940 Akamai International B.V.
Requested by https://dgr2.krafton-news.com/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Hash 061f8e3121c0e545cb6277cbdba661e0
680a6ef2b0b5b9ae376ad927055e93e1efca2389
bad9e2db663bbdb4f80bdcb6ea144d69502f9d58bf6fcf19f17e365ffea0220f
GET /en/images/nav_shop.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-3e1"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 29 Mar 2024 05:20:24 GMT
content-length: 526
X-Firefox-Spdy: h2
dgr2.krafton-news.com/js/selowscript.js
188.114.96.1200 OK 1.4 kB URL GET HTTP/3 dgr2.krafton-news.com/js/selowscript.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type JavaScript source, ASCII text
Hash 4353bfc76c6ee7ef72e04a4867ec2375
05977c83356830b9db40ce414bd8c1ef6c89bced
3e7421c9859c8f135e950b22e11271d609dac8302b70762dc2c9496669cb59a9
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /js/selowscript.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Fri, 05 Jan 2024 02:29:34 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=81NfE6bwyrGy8aATfzKlzy2pfvF%2Bivfq46Pa0zFoNSpB2jNXAzEGdnNjHbiprZ96LCbQtkFNOKgSjinhetENjmcklC3uMacplJhOVoaKISJGjItivJM8F4ECDwmohexYhao85lwycaE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913ee075693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/oke.png
188.114.96.1200 OK 46 kB URL GET HTTP/3 dgr2.krafton-news.com/img/oke.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash a3f7a462bd15357700b652ae11fceabd
b083ec4e72b1d05ab38acb8c085b7a80ae855d5d
1e6d214c782a630d6dc57ce5e8431017f97b640889093aa8cbede1ec00ba1955
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/oke.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 45807
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 14:19:08 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B%2FexCJvN1sQ4rVKNsD%2FmKt70TT6SDaNTHbThbNwujKZHn4dfBzG3xSvsDG6%2FmwWegNu8eiY%2Fu0kbHW74tNmjEa6dA3Wyb%2B3tZxnq8YEWT4KSWkZhkCZhgfZXQV9VQdlShdakPuIu%2FC0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913adcd5693-OSL
alt-svc: h3=":443"; ma=86400
www.pubgmobile.com/en/images/footer_link_bg.png
95.101.11.144200 OK 1.6 kB URL GET HTTP/2 www.pubgmobile.com/en/images/footer_link_bg.png
IP 95.101.11.144:443
ASN #20940 Akamai International B.V.
Requested by https://dgr2.krafton-news.com/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File type PNG image data, 560 x 127, 8-bit/color RGBA, non-interlaced
Hash 92ae645b6114492e8c1c5464d949466a
1d27f2644c0f5e899e9478c78136a9bc94131150
f1bd509f6032d31635a91d57de9428b83929221b854768c38c8f1643877a9417
GET /en/images/footer_link_bg.png HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/png
content-length: 1630
last-modified: Mon, 21 Mar 2022 13:24:17 GMT
etag: "62387c81-65e"
accept-ranges: bytes
cache-control: max-age=110
expires: Fri, 29 Mar 2024 05:22:14 GMT
date: Fri, 29 Mar 2024 05:20:24 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2
IP 216.58.207.227:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File type Web Open Font Format (Version 2), TrueType, length 15044, version 1.0
Hash 4806226b885b3b3d0ae52142f6bfb3af
2ea5cc6d5e4adb874989a2b74bda062296fb1ad3
714088bef569d6981bfae79530ef315f4d6505f302a944ce9063601919977e6f
GET /s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dgr2.krafton-news.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:29:13 GMT
expires: Fri, 28 Mar 2025 17:29:13 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 24 Aug 2023 21:55:11 GMT
content-type: font/woff2
age: 42671
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.postimg.cc/02KwtTc7/footer-bg.jpg
162.19.88.69200 OK 13 kB URL GET HTTP/2 i.postimg.cc/02KwtTc7/footer-bg.jpg
IP 162.19.88.69:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13
ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 579x800, components 3
Hash d1371c19862911f28e8a82df40b99bdd
be41c9f953d7b8cd6bcedd75321d11a711e01548
2e941582ccd035c15c6d6003745300a0f1a2ad587774e255a8482939f58a6d16
GET /02KwtTc7/footer-bg.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/jpeg
content-length: 12634
last-modified: Wed, 23 Mar 2022 19:15:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
dgr2.krafton-news.com/js/showHide.js
188.114.96.1200 OK 4.3 kB URL GET HTTP/3 dgr2.krafton-news.com/js/showHide.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type ASCII text, with CRLF line terminators
Hash 81a0dcb749a291c326c676a553f29e0f
a528f289c1de800f4a3849eaf629c4f470067043
7638e2a588d8a07f6109e9116876892aa4b6443fe949e7d8822cb1082d5b36ff
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /js/showHide.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sat, 27 Jan 2024 01:43:54 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AsuOrhbZG5oFXehsbxrks28vXcwLQrKMSquBfOmYq%2Fj02aKC5XrVySvr%2FU7l3Bl3Pl35Cwkq8V6WQ6aw1vjIpv7yGMWH%2BehgNJbrMa%2FB07BwPzeAVTn21%2B6JUrhV0L71nHq1JohYF1A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913ee0a5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.pubgmobile.com/act/a20180515iggamepc/logo.png
95.101.11.144200 OK 6.1 kB URL GET HTTP/2 www.pubgmobile.com/act/a20180515iggamepc/logo.png
IP 95.101.11.144:443
ASN #20940 Akamai International B.V.
Requested by https://dgr2.krafton-news.com/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
Hash a74329a2054a9e096a43ba8742dd9523
4ccac3041bf854721b91dcb45286b8488dd9f072
cde9945e91f0e51058869d687cd24c8f58804f25623999f1291c71b3697093b6
GET /act/a20180515iggamepc/logo.png HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: "5ff6baa2-3bf2"
last-modified: Mon, 08 May 2023 08:25:46 GMT
server: Akamai Image Manager
x-serial: 910
x-check-cacheable: YES
content-length: 6055
content-type: image/avif
cache-control: private, no-transform, max-age=43200
expires: Fri, 29 Mar 2024 17:20:24 GMT
date: Fri, 29 Mar 2024 05:20:24 GMT
X-Firefox-Spdy: h2
dgr2.krafton-news.com/img/btn-buy.webp
188.114.96.1200 OK 1.3 kB URL GET HTTP/3 dgr2.krafton-news.com/img/btn-buy.webp
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type RIFF (little-endian) data, Web/P image
Hash 0a3d013304fa9707ad810302ea1bf543
f03f7e705de373d378ecb1058340e1a063740754
ce4bb5f5b9e053322114454445ba0c353dfc422edef270271ed937aa44c9aef1
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/btn-buy.webp HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/webp
content-length: 1254
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sat, 23 Mar 2024 03:20:12 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n3V3motuh7yYGZ%2FX2qb5uNl%2FzkC2gLQFy0FqhtR%2ByTvusyvaEKr0O0iEKp3abjYTzBUMaiMx3Zv83H21wKG9d1s4mpiFlbKkHuo6tIMLNJ4NPJPT3MNu84y9dT90R3gTRwdhW61Ef%2Bw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df8c5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/js/kinnonscript.js
188.114.96.1404 Not Found 4.7 kB URL GET HTTP/3 dgr2.krafton-news.com/js/kinnonscript.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type HTML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /js/kinnonscript.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wv6jShqdKL5kzwGY5iuXCjsLd9pz9PxDpYvg6s%2BurLfwSyhpAkhBKgtunAbfkLnUg5Q6pDC42cAF3TMRUza6Zwc2E0jNJw%2FhQ3Ys5ewIoIqn7%2BeytYQODxVPclPkM10t7%2Fth1v5m9%2FI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913ee0c5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/tips-bg.png
188.114.96.1200 OK 559 B URL GET HTTP/3 dgr2.krafton-news.com/img/tips-bg.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash fae7976f6a58880648b8174f36e552fd
adacdcfe301ddeffed1ea7b80eb4a57def95fdf7
f0ef5a10a69465cb7e05fb91cd74549a3427d53539d15b337a179662bfc9eeac
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/tips-bg.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 559
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sat, 23 Mar 2024 04:42:28 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s3nn4e3UxoBUXv9zOHvaC%2Fs7P2MB6jUlqk99o%2FnCUfn22SUxZg87nnM%2F%2FBIL9VUnADAR7lzJRq7QdmT5dI%2F%2BT2FE7D27Ld1BhdLY6RyDjmeO5rN%2FnsQRibY6Yx43PnaqVoYbOSprBss%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df8a5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/item_bg.png
188.114.96.1200 OK 22 kB URL GET HTTP/3 dgr2.krafton-news.com/img/item_bg.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 719d8a539ad5a8171cd4ce43496a590e
9a8be079f2aa8164911c71509ea7346c401b567d
7004660a126b7f4fcedb11af2a7af13fb8a9848ff9a378c47f1c577dab01ae0a
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/item_bg.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 22157
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sun, 24 Mar 2024 14:19:06 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5uvt%2BRG0BXyvVmWT%2BtRvF%2BpMUHsQq6lB3n7SVeNrBi6NSfAw%2F3u5%2BXmtFGCaWYL7slE1npzVutaGz1Oz5V5ecACAu8JxJ3MP9WfszjjALyLgaEtZ9je3I6nFXnUtN98%2BDdIuFPQTrAM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df8b5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/title-en.png
188.114.96.1200 OK 20 kB URL GET HTTP/3 dgr2.krafton-news.com/img/title-en.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 7ca51b4dee57ffca79037dddfd7738b6
7fdb004a69d78f1f1b407002d0065af22ac442b3
029bf2d610372decf9a7d7b6411e7f3b9a8f2a6c30f67e4bb13178dcea9cb696
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/title-en.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 19716
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sun, 24 Mar 2024 19:52:18 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IDj0KY21vefXA7qptiphtZ63glY6Vtgm%2Bwu4OxOt9RFO%2FCPnAzGSsRwev%2BOL5ZohggG%2BH2PSNgxnuaAYqeFm2XYHf1tgt%2FBZuoL%2Fdw75gAwEHuXrjKoRgQJnb5uNJXZuqexJadMD0Os%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df845693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/js/scriptv1.js
188.114.96.1200 OK 30 kB URL GET HTTP/3 dgr2.krafton-news.com/js/scriptv1.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type JavaScript source, ASCII text
Hash 090885242047dbef3936d6c641e3ac42
00cabf2c4a3efc58dbd9582f0845404f2a35f212
ec48bfdf580d5df11c530c0c1c25ee65bf0362374bc96370faa1f4de08ab14b4
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /js/scriptv1.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sat, 23 Mar 2024 23:52:08 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zCmDk7%2FDRAi%2F3vJGW1ZQExnZJ12oV%2F2TB5%2FydzaelshzVJDScV1mTVoFtF831eKLN5ERRYgdTBlVAfm3ybCzJG6pUT9CODqjSX6qjgNqfAh8JFYznB95vTeuFVKD1m4OWprPkjO9dIo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913fe145693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/fonts/selow.woff2
188.114.96.1200 OK 22 kB URL GET HTTP/3 dgr2.krafton-news.com/fonts/selow.woff2
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type Web Open Font Format (Version 2), TrueType, length 22220, version 1.0
Hash 345579e8566a3dd6dc9feb5362fbe7e1
df075dd0c26e72fd7df19948f07904c1eaa72ded
1d0dfcc32b3be2bf3b3dbc371e9b7c5ce205f4bc6f7c8ce0226256cc7064c3e4
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /fonts/selow.woff2 HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: font/woff2
content-length: 22220
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sat, 16 Dec 2023 21:02:34 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rQDGn9xtcRjC32o7pQ%2BXBQ2hDeDNGaPLvMWbdT7TaoQ7Xr8qjYfQE%2FZNR6EPOrlDcxLgFVFuIVBu9jR%2Fs8CaWfPjtCqTaqS9XoDIu96Y7hFl%2FOLBeRGlXPaOntnd48TwBUSOReOkCpQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917ef925693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/js/loginall.js
188.114.96.1404 Not Found 14 kB URL GET HTTP/3 dgr2.krafton-news.com/js/loginall.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type HTML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /js/loginall.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TEA3gFtzFy6UhQ8LuhdbaS11sCi7FiUjj8gY4h%2B0lxIxBIDROkR%2Fq42lFmbB8kkwi7kGj9r3rLAeCRWhDyHvb8xgx%2BaOpSoI9naYl%2BkuAyg%2FZzDsooE%2FAgsVVfvyzTDea%2B3mxjSlzm4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913fe0f5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
l.top4top.io/m_1725u5z7i1.mp3
135.181.63.70206 Partial Content 20 kB URL GET HTTP/2 l.top4top.io/m_1725u5z7i1.mp3
IP 135.181.63.70:443
ASN #24940 Hetzner Online GmbH
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subject*.top4top.co
Fingerprint2A:32:75:1E:FA:EF:D1:3E:02:CB:78:77:7C:32:CC:60:49:AC:43:05
ValidityFri, 01 Mar 2024 00:02:35 GMT - Thu, 30 May 2024 00:02:34 GMT
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo
Hash ee5b5d12064ae26f839b882edb33da62
6fa93ef00f294eec4ef05276e81813db1e95e346
4bc5852e5cec62ceab9260f712961f59609868151e01b63e7b7cae2b00efed54
GET /m_1725u5z7i1.mp3 HTTP/1.1
Host: l.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: audio/mpeg
content-length: 19781
set-cookie: klj_40d147_downloads=kh51z; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Sat, 30 Mar 2024 04:57:04 GMT
last-modified: Mon, 21 Sep 2020 07:16:33 GMT
content-disposition: inline; filename="open_reward_tab.mp3"
etag: "5f685351-4d45"
expires: Fri, 29 Mar 2024 07:20:24 GMT
cache-control: max-age=7200
x-file-id: x34392023x
content-range: bytes 0-19780/19781
X-Firefox-Spdy: h2
a.top4top.io/m_1725zobal2.mp3
65.21.235.194206 Partial Content 18 kB URL GET HTTP/2 a.top4top.io/m_1725zobal2.mp3
IP 65.21.235.194:443
ASN #24940 Hetzner Online GmbH
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subject*.top4top.co
Fingerprint2A:32:75:1E:FA:EF:D1:3E:02:CB:78:77:7C:32:CC:60:49:AC:43:05
ValidityFri, 01 Mar 2024 00:02:35 GMT - Thu, 30 May 2024 00:02:34 GMT
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo
Hash 70ded6b0b406f9710307bc35e221629f
7034ec2ff72c936255b04c0890ce8976599380cc
22e1575a06426f427b46598d6599c565e80ed3e937b1872b0d5d928bfe5b2d65
GET /m_1725zobal2.mp3 HTTP/1.1
Host: a.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
server: nginx
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: audio/mpeg
content-length: 17691
set-cookie: klj_40d147_downloads=kh520; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Sat, 30 Mar 2024 04:57:04 GMT
last-modified: Mon, 21 Sep 2020 07:16:33 GMT
content-disposition: inline; filename="close_reward_popup.mp3"
etag: "5f685351-451b"
expires: Fri, 29 Mar 2024 07:20:24 GMT
cache-control: max-age=7200
x-file-id: x34392024x
content-range: bytes 0-17690/17691
X-Firefox-Spdy: h2
dgr2.krafton-news.com/js/sliders.js
188.114.96.1200 OK 1.9 kB URL GET HTTP/3 dgr2.krafton-news.com/js/sliders.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type ASCII text, with CRLF line terminators
Hash 7c0eaa367317385b4a76b7e2c9b47ce7
65a7120dcabc92e4eebe3986f42ba527c2b710d7
638fc73ef8a7dd67388d64daa69ca29968b3e39cc777c907ce9e0505a6bd9494
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /js/sliders.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 00:47:22 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W8Jf76LhFVAlB04osVv9T02Tqe%2B4hipN%2Bc09lidJCwV1zHLj5sbxrYsmnt%2BLofnpB7jXORUUmfBGkaDJm5Q3Lzw0XZ%2Fx%2BHYSTC%2FAtvOsZ9svVYTes9hcPV8nCDlWw3NsjId0WwXBRmc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913fe0e5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/media/open.mp3
188.114.96.1206 Partial Content 13 kB URL GET HTTP/3 dgr2.krafton-news.com/media/open.mp3
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo
Hash 58418a30e1310bf4fafa9fa0e57c18d6
b477e72668b181c3080d6b921e2edf15ef134f17
d5ad34e8bb64fba432c1a12b24cd1e532104d0183045e73abaaec72aa824df1d
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /media/open.mp3 HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 206 Partial Content
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: audio/mpeg
content-length: 12675
last-modified: Sun, 02 Oct 2022 09:58:58 GMT
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: EXPIRED
content-range: bytes 0-12674/12675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ltJszJVlaAG5eGFnGZ1STYWoNCDLGJQdw7M3MXst3DTGgkqf0rUp5HlyAdICJV4WnkpdUIYEN%2F5u%2Bbvp9fcq9h0EY9uf1iPRegGwrWR0nCjN739yqHbtHkMm7ldlK60O7t5OSeQMnIk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691c79805693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/fonts/all.ttf
188.114.96.1200 OK 50 kB URL GET HTTP/3 dgr2.krafton-news.com/fonts/all.ttf
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 45 names, Macintosh, Copyright (c) 1995, The Font Bureau, Inc. 1995, 1997, 1998. All rights reserved.Agency FBRegula
Hash 70777e6bd210190350f7c92395c1860f
a91fce5cdd94d1f308c1d447ee612aded030eea0
d672eb87a3787bdaf8f75df50f9ade864e2d5c9cdec5b07ce6de9d7d39433ea2
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /fonts/all.ttf HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: font/ttf
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sat, 23 Mar 2024 03:25:08 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lmPELH2dY6DmN%2FxVk716AxN8NeE7e5YBNRal0PaZeDIr4S9LhfZV1v8S7t5dt2KA%2B2Bpw29YnKpTWJDT1%2FnYWEPkQQRGW2Nv%2B8Iwd9OeEJTegNZHBQPT9%2FggvQ0uWd%2BH03fJZ%2F%2FW1Hc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6917df8d5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.pubgmobile.com/en/images/nav_menu.svg
95.101.11.144200 OK 426 B URL GET HTTP/2 www.pubgmobile.com/en/images/nav_menu.svg
IP 95.101.11.144:443
ASN #20940 Akamai International B.V.
Requested by https://dgr2.krafton-news.com/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Hash a1f09c4f5c87271dbccf8cb05885ad42
18bbacc9c372dcb6bc77c2475595e058c1ad1594
b0d849e0e910d13bcdab1e94f5c799dda1a9429c908e18069f9dc7f7d551d58a
GET /en/images/nav_menu.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-374"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 29 Mar 2024 05:20:25 GMT
content-length: 426
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/nav_language.svg
95.101.11.144200 OK 675 B URL GET HTTP/2 www.pubgmobile.com/en/images/nav_language.svg
IP 95.101.11.144:443
ASN #20940 Akamai International B.V.
Requested by https://dgr2.krafton-news.com/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Hash d8ba211bb1be1a15bf5b0143ca1b009a
215203609a551dcaccf6e434508623f302635f86
a441182568ad88fa9c54384de94a77f64148d3d54df66ea1beff4a11100967c6
GET /en/images/nav_language.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-45b"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 675
date: Fri, 29 Mar 2024 05:20:25 GMT
X-Firefox-Spdy: h2
www.pubgmobile.com/en/images/nav_download.svg
95.101.11.144200 OK 485 B URL GET HTTP/2 www.pubgmobile.com/en/images/nav_download.svg
IP 95.101.11.144:443
ASN #20940 Akamai International B.V.
Requested by https://dgr2.krafton-news.com/
Certificate IssuerDigiCert Inc
Subjectwetv.acc.qq.com
Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F
ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Hash 41c1c00e6070b60d70177ae11625bb86
7f01626c76ce129247860802fd2355f2878fe8dd
0b22f25d8b7421c4c4aec15a9a4781f873545a5732ac128871da40f38c98f4cf
GET /en/images/nav_download.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:17 GMT
etag: "62387c81-3ef"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 29 Mar 2024 05:20:25 GMT
content-length: 485
X-Firefox-Spdy: h2
dgr2.krafton-news.com/img/style-img/icon_2.jpg
188.114.96.1200 OK 41 kB URL GET HTTP/3 dgr2.krafton-news.com/img/style-img/icon_2.jpg
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 554x554, components 3
Hash 2d275ef78270a0c2fb8a8d736937c4e9
454cee8c58df4da6d570ed6bf66f34e29c74c07c
4313944f3dc763d16c92e15d8ae251fba1bbb9aced5da0716a56e68f75028f45
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/style-img/icon_2.jpg HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Cookie: cf_clearance=iTJwmZo5BX9B_AnEsFCiyicb9VO54wl_2RxqDXa3IDw-1711689625-1.0.1.1-Cb0cKx2zd1uaH6CJN3WeUkBNgUeTh2VOVQM9PiEh2RhJsEn0Na6C3ykFrYkp8lZBjIqiX2vlqVaiN9FYACalbw
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: image/jpeg
content-length: 41079
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 29 Jan 2024 22:45:56 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m%2FaOCcBWLsXRluGw4TlfVVVYD08N2xxglRUwCewddjoW2IdMgfBznzjwEtdf4C%2FqrUNFxkt6kT6oshAtfbswrp07MhH1%2B6%2F5OIlYEpheSA8cHxvkyDxx8OL%2Fqe4375YFOzZyYP%2FmS0U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691f3a725693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/cdn-cgi/challenge-platform/h/g/jsd/r/86bd690fad99569c
188.114.96.1200 OK 9.9 kB URL POST HTTP/3 dgr2.krafton-news.com/cdn-cgi/challenge-platform/h/g/jsd/r/86bd690fad99569c
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 836dd5f2344b97d845b392759abde337
e373bc0f5652779ec937bb42b6ea2802e8347494
1eb68651da84bc63d116614906a7479afca4292fdb63b74f228f509aa0fdef65
Analyzer Verdict Alert OpenPhish phishing Tencent
POST /cdn-cgi/challenge-platform/h/g/jsd/r/86bd690fad99569c HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12169
Origin: https://dgr2.krafton-news.com
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=iTJwmZo5BX9B_AnEsFCiyicb9VO54wl_2RxqDXa3IDw-1711689625-1.0.1.1-Cb0cKx2zd1uaH6CJN3WeUkBNgUeTh2VOVQM9PiEh2RhJsEn0Na6C3ykFrYkp8lZBjIqiX2vlqVaiN9FYACalbw; path=/; expires=Sat, 29-Mar-25 05:20:25 GMT; domain=.krafton-news.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w29WQODiLYSd3g2LAdgi57wW3c2UI5%2BSAYFcxVpLna27zr4ctkpE%2BcWLvOL154C9Iv3%2FWVM6Hn5T%2BMT1h1KW8NuOScQnlAyFrY%2Bvhsn%2BEhdNN5Cjc%2BUakKKiQ7FldsHNRxUoNUi9vDg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd691d49d55693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css2?family=Teko&display=swap
142.250.74.106200 OK 1.2 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Teko&display=swap
IP 142.250.74.106:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B
ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
File type ASCII text, with very long lines (1182), with no line terminators
Hash 517c67874f6f9ada9c4283fe962de9cf
3ef9577a3d48a4d102dbad75e10bc5563e08d81f
6a843b3e563cf2b17bbb15e15041f252e7524deb41991c4a2ce088b0e1c7f29a
GET /css2?family=Teko&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 29 Mar 2024 05:20:23 GMT
date: Fri, 29 Mar 2024 05:20:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dgr2.krafton-news.com/css/link.css
188.114.96.1200 OK 7.4 kB URL GET HTTP/3 dgr2.krafton-news.com/css/link.css
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type ASCII text, with very long lines (8404), with no line terminators
Hash b60438dd20eeb9480f0c64d2268808cb
dc5bec0d01f507ba39265ff874fde887a81cd9cd
d947f10f880b0f1fcdf987e26204b44464bba2377040e76ab7dd3544dcd83f4d
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /css/link.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 28 Jan 2024 14:20:58 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UzQzcXwcINPY5lUxSx74fgqW0ThlKgjoLfOIzHxP2b6GOIYWxgciP%2F9cR53PYzwJbvobgtZPd2OhZvS5fAKo428Ten6etIOqeIxVr%2BqqGGAbhhAJng8jBmiRiZe%2Fh8RuGvyyi61SUpo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69137db65693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/css/bukanlog/facebook.css
188.114.96.1200 OK 5.0 kB URL GET HTTP/3 dgr2.krafton-news.com/css/bukanlog/facebook.css
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type ASCII text, with very long lines (5325), with no line terminators
Hash b31aa9931fedc83d94bf0b0f2ac9c8ff
f8b5bd5ebc48ecf1a6a1707cebd8361868a71cfa
c17464f70efb51fb6e97fd7429ec1496454dadfc85d388c6b06b406cf332147d
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /css/bukanlog/facebook.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Fri, 09 Feb 2024 14:46:58 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2rIuL%2FY1tPTkkhcZa%2F5oHNdDEPHz6QFyDv%2BuoYyRQWOCtbDRpIhCebYV2fpdJRlR1PQ0nJ7o8YaH3LE86wbwNsUe2FqACINlI2XSoQxdKv8JA40rSJIeGPnOBbgXMxEUvqNZEBHtKMI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69137db85693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/js/myscript.js
188.114.96.1404 Not Found 1.2 kB URL GET HTTP/3 dgr2.krafton-news.com/js/myscript.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type HTML document, ASCII text, with very long lines (1276), with no line terminators
Hash 24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /js/myscript.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dXVKOLZEUkxtoIHfaGBHyyPpxiT0JIQbrk9q96u7EsNdBDv5y3CwyGPnkucEDhqrr%2F73%2BZQF7XyZF2Q5dnJeTrqP%2BfpiBMv2UXazsq8rS4dAIq%2BxQLbRic0Tf0vCfmJ4tfJl8rW0Qx4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6919782d5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.10.207200 OK 31 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.10.207:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 18:48:06
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: dd809c84048d5afa8e77adc8acacd559
cdn-cache: HIT
cf-cache-status: HIT
age: 11063798
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 86bd6913cb6a56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
dgr2.krafton-news.com/css/style.css
188.114.96.1200 OK 28 kB URL GET HTTP/3 dgr2.krafton-news.com/css/style.css
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type ASCII text, with very long lines (305)
Hash 726c4563ef1d6fe4f0d62eb1c3470890
914ec36c1c44ff7a3838db7c5461eb3e41a76f04
13f44c8acd0450ae9e9b23d25186c7becca88e5f14d4d293b942a2c5b032fa15
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /css/style.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Mon, 11 Mar 2024 22:08:54 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NdRQI%2Bf1%2BN5y9GH%2Bg7qCRXp4nsT4H%2B4vV0ITJd%2B8RHGtSEJBRaJwzCNQQFwPKZIq7A6m2rBt7gcCs8ab4iQKe4pLeHPBWMjMkUe3WY89ajvO%2FvA%2F1iy%2Bj2K%2FM1URBJ3no9pgX0K1cJI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69136db15693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/css/bukanlog/twitter.css
188.114.96.1200 OK 6.4 kB URL GET HTTP/3 dgr2.krafton-news.com/css/bukanlog/twitter.css
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type ASCII text, with very long lines (6929), with no line terminators
Hash 6deebc911d2130cb9cfba82c51459b37
9c2389a5d15fe039f52c4d66e4a2c628e9839aa8
34f4e3cc78057a9fc7ff487d13d013275c9184a09b7246dd4c112b989d743cc8
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /css/bukanlog/twitter.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Fri, 09 Feb 2024 14:46:44 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Go6fo7l5daW09zvfemdT%2F76%2FVw2CMg343ztzeKIOmhKvvVz8g9yUCLUxVd0PsNwbaiOcXp55J6kskCIIIL%2BJv1hwOZ3RCS0ZRh7xbM2QwRg9e9OUB9de2z77BYlHrUoTTCFmjIHoye4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69137dbb5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
188.114.96.1200 OK 1.2 kB URL GET HTTP/3 dgr2.krafton-news.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type HTML document, ASCII text, with very long lines (1271), with no line terminators
Hash 40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: application/javascript
last-modified: Fri, 22 Mar 2024 11:37:58 GMT
etag: W/"65fd6d96-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G2wT%2BlrLULQ5dmM0rNXfFnvBzIR7AA5jBlJK3Oifov8I6WsATlHO0ZKEVqmpAk2DyDlHmbNIQMC1VlGH72tBhhR2HW82VTG6WKMf481LkniS62tBZUlKy18nc%2FWGHUPrYAjHJalykuU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd69187fcd5693-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 31 Mar 2024 05:20:24 GMT
cache-control: max-age=172800, public
content-encoding: gzip
dgr2.krafton-news.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js
188.114.96.1200 OK 7.8 kB URL GET HTTP/3 dgr2.krafton-news.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type JavaScript source, ASCII text, with very long lines (7769), with no line terminators
Hash b36cbd5b8df1d1180a1c45711d5fbf2f
0b2943bce296155c8b1a6a09626ca334d172d687
a94ab086f044c082131e3886c59530de2c89c4ca106cc30d43594360eee4dea7
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
vary: accept-encoding
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0zTJdSXCr0%2Bc0258QHeJ31DZKbAS1XwH6W%2FNSKA7kVMscLDO6SwZN0omUSC7aG38KECrTKtagmPldfxbS5HoLQbgak4H8mq71%2B9FKYItvNHDAKmkcOUjPU%2FC84jcZl2T6ItBo5e5Mbk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd691c79885693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/css/fonts/selow.woff2
188.114.96.1404 Not Found 1.2 kB URL GET HTTP/3 dgr2.krafton-news.com/css/fonts/selow.woff2
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type HTML document, ASCII text, with very long lines (1276), with no line terminators
Hash 24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /css/fonts/selow.woff2 HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oDredY%2BpAm4QF%2FtugrlCpMTULF5DjUOL3R44TxxGdvaFjSxTg%2BrmbN%2FyhhMRn1AKsu7fpy1v0ryRF4bKNI7MwWWRio9fDbs39Xk1Zqqibe%2FZmwl3t%2BZQWdIwzDm76DheYGMmo485INc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691a98945693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/media/se3low.mp3
188.114.96.1404 Not Found 1.2 kB URL GET HTTP/3 dgr2.krafton-news.com/media/se3low.mp3
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type HTML document, ASCII text, with very long lines (1276), with no line terminators
Hash 24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /media/se3low.mp3 HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M0dPGDO4WjnlOMxxQMLC2eVIiO1aty9OlRXP7PJ8GsFK6KHuQMPJqLt9uPpraUvRMWgTGNDssTSCuhc2bneJig08zKG7PWf94MMjKfrpLRExTZF19ns8zXxQjaSBIiarcbf9Pa1fdDg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691c79825693-OSL
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
142.250.74.106200 OK 12 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
IP 142.250.74.106:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B
ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
Hash 807349734f3707b50b73c3fd626526e8
2f3ab67f0ffa01bc1f0c180cae9085ecc8d96d63
ce7d7e11e41b1b3619cbdf436bbf2557fda2d97d434e65fab281207ffae5c0d0
GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 29 Mar 2024 05:20:23 GMT
date: Fri, 29 Mar 2024 05:20:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dgr2.krafton-news.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
188.114.96.1200 OK 1.2 kB URL GET HTTP/3 dgr2.krafton-news.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type HTML document, ASCII text, with very long lines (1271), with no line terminators
Hash 40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
last-modified: Fri, 22 Mar 2024 11:37:58 GMT
etag: W/"65fd6d96-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1dASY%2FFozqNnuVXHXDWNpVUMGT%2BOHE78y1o%2F4urOVIgBQWM3KKmRY1pc5Ogoed9ipipuBDubuIvVR4GR5ZqgtCRu%2BSh2AVoO50K47B%2FkMIvnqPlICCwfaUeldtFqZhk%2B7NJ52vysF38%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913de015693-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 31 Mar 2024 05:20:23 GMT
cache-control: max-age=172800, public
content-encoding: gzip
188.114.96.1200 OK 75 kB URL User Request GET HTTP/2 IP 188.114.96.1:443
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Tencent
GET / HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EOV4GQkFrlkBS4Rv%2Fi4AYDY%2FaksmQ0YqTGG6Xn7GPfjQDTdkVbPNy7mBoe0rroP5Fxop7fdv3HA5YOCCeyFDbjTFDUYTrmCrD7W0RdnRU17N3xIM5U1wKgeEY2NlDLQqL6RCqC6X8r4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd690fad99569c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
dgr2.krafton-news.com/css/loader.css
188.114.96.1200 OK 6.0 kB URL GET HTTP/3 dgr2.krafton-news.com/css/loader.css
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type ASCII text, with very long lines (6144), with no line terminators
Hash 0871902c1e3fc03adc8b54a4e0a72fe0
4f3d6341461c9830fa69c856f32620ebc04ecf60
0ec9849f16e30ce86df6ddd24db1f52074a26a965ff230da299726bac140e5e6
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /css/loader.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sat, 16 Dec 2023 21:02:50 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9H07lhq8prT3VoMar1Yr57N9jC9%2BgXYXyJUefdTKN1LIikq5oJReeKIu2CnNo65J079YDFDB7H5S0OT2xogW5h84qaClIQKczG%2BXQWvRBm8NCoWUFo5XycZ0779quPx%2FcZfNzt6RFsg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69136db35693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/js/slidernotif.js
188.114.96.1200 OK 406 B URL GET HTTP/3 dgr2.krafton-news.com/js/slidernotif.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type ASCII text, with very long lines (425), with no line terminators
Hash 3a70993b7ec1b300cfbfb54f2b0ad76b
28e7ace020a7adba66e0c123725bbb0edf6c01b0
17c3d4e59d14979090f5b09b6c3906496b4859e2ef43a781d6401588c7d9b0bd
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /js/slidernotif.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sun, 24 Mar 2024 04:39:34 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R%2BjGtLDnIi3ZvEtV4x02J3V4Lwc%2Fuy9IR1asCjfdwSdKQ6sx%2BhvMGstvKrREoHyD2OFp2APJqN2O1JkbpmGJErCSWB3jsh8wxMmit5IVpvOdED5W25oCRoD6KrqQH03WMM5d%2BtZX2gI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913ee095693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/js/myscript.js
188.114.96.1404 Not Found 1.2 kB URL GET HTTP/3 dgr2.krafton-news.com/js/myscript.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type HTML document, ASCII text, with very long lines (1276), with no line terminators
Hash 24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /js/myscript.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FE9aOovJaDtIxryzuEfvaS6Aw2Ei%2FYcHy8dC5pmc3ld5OIX7t8rOBHQcItpauz0dgReVbX0EPF09JW5Ddyy9qBQhMDjwXQ1iftj77InFSx%2FPG5%2BthTmia7V%2FZtzQH9WKi3e6hHfEuvc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6913ee0b5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/css/animate.css
188.114.96.1200 OK 78 kB URL GET HTTP/3 dgr2.krafton-news.com/css/animate.css
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 8eae1a9cfafdc593321d4d59ec4905ea
232f5f3f4c3a0a56823e0e933f9c7fec3aa9cbcc
e89c81987c5cbc157097eaa6657d6a594abf030cc89bb63f0d2154d8383e9fab
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /css/animate.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Sat, 16 Dec 2023 21:02:46 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lwqjeFORt5FJboMHmpzJ%2BzcBzofr1BYvnHZe6xbgd2xo5Mc%2Brsu2pR6ulX535drY8Nlgh4JvATstYYzxT66qLlwceuzAJF3%2BRXQoMTHJ18xQnIkl2l0oYM6zKK%2BnZMklf5W8NCM9DbY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69136db25693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/media/close.mp3
188.114.96.1206 Partial Content 13 kB URL GET HTTP/3 dgr2.krafton-news.com/media/close.mp3
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo
Hash 2056bdcfbd551273ee207f8c6ff9d257
6fe68c9917d3409710aee4147ada311093d33ba6
d7633fdf0d543880acc3fdaf578728d7becc1ff429ba054921d3313f73a5a4a7
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /media/close.mp3 HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 206 Partial Content
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: audio/mpeg
content-length: 12675
last-modified: Sun, 02 Oct 2022 09:58:58 GMT
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: EXPIRED
content-range: bytes 0-12674/12675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3gve8X6UbIjlMPvaHo5zLu1704r2yqH8d%2FJ0sCS4x5Yr8UiUM8EwHJ8h2nntpptGx4e%2F6J2b%2FSh6r80V2RTfrwRBEJsEvgQJiO3ASyzSgFnhz93%2FkoRdaa%2FoyXHnGIwPWkhYuKm3Jqc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691c79815693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/js/international-telephone-input.js
188.114.96.1200 OK 463 kB URL GET HTTP/3 dgr2.krafton-news.com/js/international-telephone-input.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Size 463 kB (462811 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /js/international-telephone-input.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Wed, 17 Jan 2024 21:18:10 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PUdzxbQsXwZLooUDDtw29%2FkA58IL2x%2FG8l3Yen6qpHw5MezTHEn82RYGr1bN9%2BoodTarZrof8oJlOByVVW1jxuv2PFpA9QDChXUF4pfuxfUtRiHg3Ipd%2Ffi5hoKPMNHGLLbKR96M4%2FM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913ee065693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/js/link.js
188.114.96.1200 OK 5.8 kB URL GET HTTP/3 dgr2.krafton-news.com/js/link.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type JavaScript source, ASCII text, with very long lines (6170), with no line terminators
Hash 65315cf90f144d0cbddc2d3a6daf1392
c9bbca06b98d0659ebfb226aea0e8a21cd9add68
ab6752a2d0b3a4b988fbcd7d43003a06525882d2a60d36685720c8d57ca70c80
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /js/link.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Tue, 19 Mar 2024 14:26:00 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XdWlFO2t%2Fjccg5reb8RSmevNO%2BzCKDn9lUqG32Z9y9ecdx9Hu5waAzSUa2bbvYr%2BrBH8%2FUWZC%2Bm6a8fvw7s0vNW8vT%2F9foi9qRNMZ6CirH%2F2hPlTEPIiaOCc2RqzhHd9hROpYMTU9Rs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913fe155693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/css/international-telephone-input.css
188.114.96.1200 OK 20 kB URL GET HTTP/3 dgr2.krafton-news.com/css/international-telephone-input.css
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 631156c56e9b146c0450dacd7936a501
25c764014596c5d5508e203967dd813facb8374c
96871ae895184625a43089fe99a501ba47f217eb7935996e44450b16266f000c
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /css/international-telephone-input.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Wed, 17 Jan 2024 21:21:32 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fIMC69mv3JJeM10%2FJVgefeT3CjUydhm7B1mymOXrUH4ww0Qm1dSez14XvP8HmJe8dCWG7znqiRDspGgRtcEjfE446vLioJB%2FNqCzJHCKbqHk64BA%2BkRJqGmvxnAjWKPhLTrk4YU0caI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69137dbc5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/css/mantap.css
188.114.96.1200 OK 1.8 kB URL GET HTTP/3 dgr2.krafton-news.com/css/mantap.css
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type ASCII text, with very long lines (1934), with no line terminators
Hash 596f8e18d1dcf9f1552053b2f2324b89
191323178ee673cbc1c48f623cab68e6c5ea1300
8a8846023357ac2706049e87737f5d9dbccd7b362b2ba498bb9ee32f748711a6
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /css/mantap.css HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Fri, 09 Feb 2024 14:40:42 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6BE73DCQ%2BodJxu5AQMRjx7jnCttymEiJlfkX1amqqCQOYSzYX1Z8mrvTcBViCTf6jnQBUbfHMYLE5bxd5eBffyrAPiygE%2BDlZJA9%2F%2BPUpK%2BDahhBs148gjI3jebsUpjj1vI%2FY6NeZVs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd69137db75693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/bg.jpg
188.114.96.1200 OK 14 kB URL GET HTTP/3 dgr2.krafton-news.com/img/bg.jpg
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 6be4c166a312ed8aff1855a327a42061
c9e974d6db34cfb3ea0b08d7e2cec303710efe3a
c1a13284e1208e2e87224d4dbe48ff47311c93c538795262095e7f1fe49ce083
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/bg.jpg HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/jpeg
content-length: 13501
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sun, 24 Mar 2024 14:23:36 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QSECEfE5c%2Bv%2Bmpv4N8XkXQ2ypDd0HcIHR0aM6rXL8CKUzTl5HAasyK9VTVSLU2EkVVjjH6kzb%2FrzJ8bWG7hchFke6K7eeg6Pw2m%2Fnq8Lbybm%2B2ENXEu5I0bQ392RzYKscIp84UL5j0I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df835693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/media/putaran.mp3
188.114.96.1404 Not Found 1.2 kB URL GET HTTP/3 dgr2.krafton-news.com/media/putaran.mp3
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type HTML document, ASCII text, with very long lines (1276), with no line terminators
Hash 24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /media/putaran.mp3 HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ithRIHS9VQg7HLF%2Fbls2%2B%2FOxI0Pq2JxLUJkwNCdtdqZSEgO646fJHLmmtk%2BI%2BDEl6M8%2F9RWrseJRaAZ4rfFk9TRhrxRsAwsqwHjZvW6%2BYJAfdZu3Zqt0N8kFliDrQRdz90wEUfyYPzs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6919782e5693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/bjsd-box.png
188.114.96.1200 OK 4.1 kB URL GET HTTP/3 dgr2.krafton-news.com/img/bjsd-box.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 58b7831a59022115d35052df19abab41
8077bd08efa97f0900be2a4a11e25f0c2b874e2b
221050ccb466738b763c2ccac55da3a9c27af244ad43b596841f5213b4854e30
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/bjsd-box.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 4085
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sat, 23 Mar 2024 04:16:06 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mt7q1EqielKEIteMDFhQpJS31ktgb%2B3YBDG%2Bh3sciWN4Cl3J0PgaZAfWcqFhGyG9RwAQrokvJO6KFwmbcSrscVAfOWN3jJ94DHZqtf0mWclDTZM218mvNk8rG5wsIguV5eRKQZ6F270%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df875693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/css/fonts/selow.woff
188.114.96.1404 Not Found 1.2 kB URL GET HTTP/3 dgr2.krafton-news.com/css/fonts/selow.woff
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type HTML document, ASCII text, with very long lines (1276), with no line terminators
Hash 24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /css/fonts/selow.woff HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xjQWbo1MAHCHkqgeOK8FLXi1pF1huEoIKqXqhZFijoWkO%2Fasp4wvyYxipmpTaiMYUZPhwVdxoeX99o4PuX2lHwOaXYP3GmLjDweDZFfE%2BVSzApxQDGDdEEr0gWArlaQXlXXLZRH5RBg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691b58d95693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/bg.png
188.114.96.1404 Not Found 1.2 kB URL GET HTTP/3 dgr2.krafton-news.com/img/bg.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type HTML document, ASCII text, with very long lines (1276), with no line terminators
Hash 24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/bg.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rFdxWujrt470phf%2Bv9hECHHO8QLFx56HoC7EyXnsqoRx8ywssLPze%2BcXUf5C0QC%2F6D9kFUYHbVjyepjMuxTrovRd7wlE8JWdxoIzzojlW%2BDKyklADv%2B0ZbC3NH9kFvUsg6YIW8Gluow%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df815693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
188.114.96.1302 Found 7.8 kB URL GET HTTP/3 dgr2.krafton-news.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Fri, 29 Mar 2024 05:20:25 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/dc6b543c1346/main.js
access-control-allow-origin: *
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=26c1d3DVxxLLQLFFY5DeZ2D%2B7L7q82m5wROCJiKxQKxzp1X6CDRQSpKOZQWN3CmU%2B4UTi9B%2BJ0VEB69kuwEEEhZpdXPM8O1zt%2F4pQCuiJakJpRDMgrLGnCQeZrbkMm1WBAu2VJEhP4g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691c69795693-OSL
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/css/fonts/selow.ttf
188.114.96.1404 Not Found 1.2 kB URL GET HTTP/3 dgr2.krafton-news.com/css/fonts/selow.ttf
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type HTML document, ASCII text, with very long lines (1276), with no line terminators
Hash 24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /css/fonts/selow.ttf HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 29 Mar 2024 05:20:25 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N0C4AHO6iI7mqfs%2BSz3YUHL8v22Y3pz%2B72t15XYr931UDAg%2FuLbhmyqGLmSMIB72IkADC%2B7dDQt%2BKoax2LFEddfn088e4AA37tZJ74s66t01xLg08fcPVY6n08AkeWB9hIhpMwhEUZc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd691c29625693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/js/click.js
188.114.96.1200 OK 1.1 kB URL GET HTTP/3 dgr2.krafton-news.com/js/click.js
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
File type ASCII text, with very long lines (1170), with no line terminators
Hash 4555c10dd47ed1b66e2457238def054a
cadff197aeff8f5327a139a7f250ad444d7ce05e
e00e5f480582888e37bbd0f1dbddc8d9c1d175ea950c76085720bd124410504a
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /js/click.js HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:23 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:23 GMT
last-modified: Fri, 09 Feb 2024 14:38:28 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HKzsF716aJW7dAXPqTOb4NOSdDW0e1V%2F3GCvoc%2FNMMt0Z8sjELI1ZrYGrpLVvkjyJe7RMnDjvhG%2F1nGHgKk0RLjYTbmvNlueGXQPtRxHeKQLY64GwNbxRrGbRf%2F%2FcSkBAyT930E%2BHa8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd6913fe115693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
dgr2.krafton-news.com/img/title.png
188.114.96.1200 OK 28 kB URL GET HTTP/3 dgr2.krafton-news.com/img/title.png
IP 188.114.96.1:443
Requested by https://dgr2.krafton-news.com/
Certificate IssuerLet's Encrypt
Subjectkrafton-news.com
FingerprintC3:62:B3:50:BD:8E:70:D7:F1:59:98:38:41:E9:14:6C:70:AE:6A:1E
ValiditySat, 23 Mar 2024 03:16:22 GMT - Fri, 21 Jun 2024 03:16:21 GMT
Hash 235ed2643e0492d22e854c16d453a3c6
b0976235222947b9f3a280a2497eba930bc88017
6e7c226a98b4a89db522eb4628bd409b23aa8c82e3f5842a064cb9a369be7b20
Analyzer Verdict Alert OpenPhish phishing Tencent
GET /img/title.png HTTP/1.1
Host: dgr2.krafton-news.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dgr2.krafton-news.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 05:20:24 GMT
content-type: image/png
content-length: 28149
cache-control: public, max-age=604800
expires: Fri, 05 Apr 2024 05:20:24 GMT
last-modified: Sun, 24 Mar 2024 14:19:06 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BQKxHPKHM1ixdSgIOLGVJ8nW0tuDEiXM2TuuUcYEyRZGVNIEGuvklYpnXh2qkUqidDuG5P0ByiSeo4Cev6H4cJruxyQy8cwnU90NGDKPnp%2FJB6v3Q7lYbndlry%2FLzwoSmgRiLUNgXTo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd6917df865693-OSL
alt-svc: h3=":443"; ma=86400