| flingtrainer.com/downloads/EMZDfKhvIDoGHScTZS1hPgldjh4FN3zTtjpDm26FYtA, | 188.114.97.1 | 302 Found | 13 kB |
URL User Request GET HTTP/2flingtrainer.com/downloads/EMZDfKhvIDoGHScTZS1hPgldjh4FN3zTtjpDm26FYtA, IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectflingtrainer.com FingerprintF3:76:70:69:BD:68:6B:9A:54:8A:9D:58:D0:BB:DA:86:DD:4A:01:26 ValiditySun, 14 Apr 2024 01:06:18 GMT - Sat, 13 Jul 2024 01:06:17 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 Hash11abb75f2da1ce55b58cf6f57f1e6ab5 0312fc68cac322418d4e5831ffce5224753f3d4f a6d01b713962941815f3fce17d1251b9bf0767f7f080ec5aa4ec8c2e92d5ffd9
GET /downloads/EMZDfKhvIDoGHScTZS1hPgldjh4FN3zTtjpDm26FYtA, HTTP/1.1
Host: flingtrainer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 25 Apr 2024 21:42:02 GMT
content-type: text/html; charset=UTF-8
location: https://flingtrainer.com/wp-content/uploads/2021/01/HITMAN.3.v3.10-v3.160.Plus.13.Trainer-FLiNG.zip
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie: ikgxPfc-S=hGER74M6uxkL9; expires=Fri, 26 Apr 2024 21:42:02 GMT; Max-Age=86400; path=/; secure
oYZQOsHLcUbd=EXbUmG.oJ; expires=Fri, 26 Apr 2024 21:42:02 GMT; Max-Age=86400; path=/; secure
QcGqsjwyzIVOhUJm=dftYO%5DRxpH; expires=Fri, 26 Apr 2024 21:42:02 GMT; Max-Age=86400; path=/; secure
dzXSbtHy=peDNBPm; expires=Fri, 26 Apr 2024 21:42:02 GMT; Max-Age=86400; path=/; secure
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ja6KYhYiuXA7%2BIvEy6pNJyTgDIegrAjomwnfkG4G6oAEMe%2BRCL01tBl5ov6FiHCYm0F7dUBoudBlzz6OEdrzzG%2Fu0MGOhzx6iodSUUnGVcSMLrACz7K7iPifulA%2B58GVapwa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a180276c4fb521-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| flingtrainer.com/wp-content/uploads/2021/01/HITMAN.3.v3.10-v3.160.Plus.13.Trainer-FLiNG.zip | 188.114.97.1 | 200 OK | 761 kB |
URL User Request GET HTTP/2flingtrainer.com/wp-content/uploads/2021/01/HITMAN.3.v3.10-v3.160.Plus.13.Trainer-FLiNG.zip IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectflingtrainer.com FingerprintF3:76:70:69:BD:68:6B:9A:54:8A:9D:58:D0:BB:DA:86:DD:4A:01:26 ValiditySun, 14 Apr 2024 01:06:18 GMT - Sat, 13 Jul 2024 01:06:17 GMT
File typeZip archive data, at least v2.0 to extract, compression method=deflate Size761 kB (761391 bytes) Hashe58656461a495c6d55aff0d14e562827 bc92b3807d93a1e8f889b8ff5df0e6e946937285 f3e494d790c5ae93c9a2df78d92c4747e0c63e74ebdcf72a882d5e2d222c9368
Analyzer | Verdict | Alert | VirusTotal | malicious | |
GET /wp-content/uploads/2021/01/HITMAN.3.v3.10-v3.160.Plus.13.Trainer-FLiNG.zip HTTP/1.1
Host: flingtrainer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ikgxPfc-S=hGER74M6uxkL9; oYZQOsHLcUbd=EXbUmG.oJ; QcGqsjwyzIVOhUJm=dftYO%5DRxpH; dzXSbtHy=peDNBPm
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 21:42:03 GMT
content-type: application/zip
last-modified: Sun, 20 Aug 2023 12:59:12 GMT
vary: Accept-Encoding
etag: W/"64e20e20-b9e2f"
expires: Sat, 25 May 2024 21:42:03 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8LMaTp39ImORyh59QNeTWg6%2BafvM86U%2BhRPpR0IaG%2FncAG6UgkrkIQSAcPfJNbCZHsDWE2BotVHRw9qIG1dsKd3SROF99JBhuV33fJH0EP1c93SKrbndE3qWW3Dwd42OLchz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a1802c2fb3b521-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|