Report - l1nky.com/file/Wave-Installer.exe

Report Overview

Visitedpublic

2024-07-10 11:20:01

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
l1nky.com	unknown	2022-07-06	2022-07-06 22:56:44	2024-04-14 21:20:50	3.4 kB	2.7 MB	188.114.97.1
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20 07:02:03	2024-07-09 12:20:01	3.0 kB	118 kB	104.17.3.184
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-07-08 18:12:20	2.0 kB	5.3 kB	23.33.119.57

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

File detected

URL

l1nky.com/file/Wave-Installer.exe

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

File Overview

File TypePE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

Size2.4 MB (2378752 bytes)

MD58ad8b6593c91d7960dad476d6d4af34f

SHA10a95f110c8264cde7768a3fd76db5687fda830ea

SHA25643e6ae7e38488e95741b1cad60843e7ce49419889285433eb4e697c175a153ab

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 4/74

JavaScript (57)

	URL	From	Size	First Seen	Last Seen
	l1nky.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8a1028de0c300b65	ScriptElement	97 kB	2024-08-19	2024-08-19
URL l1nky.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8a1028de0c300b65 IP / ASN 188.114.96.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2024-08-19 Last Seen 2024-08-19 Times Seen 1 Size 97 kB (97151 bytes) MD5 68430f4ffa4731c1d1e8f18d303229b6 SHA1 8fcd4f1bc9c18c31e862ef6c8ddf6633672056a3 SHA256 352a59e9ca3f0eb81712601684174273917b04ab6f417d08c8e906d27d42b506 Format Code Loading...

	challenges.cloudflare.com/turnstile/v0/b/191f93ebdf8e/api.js?onload=IFegD3&render=explicit	ScriptElement	44 kB	2024-07-05	2024-08-19
URL challenges.cloudflare.com/turnstile/v0/b/191f93ebdf8e/api.js?onload=IFegD3&render=explicit IP / ASN 104.17.3.184 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2024-07-05 Last Seen 2024-08-19 Times Seen 1169 Size 44 kB (43538 bytes) MD5 01f5112e432dd843f6083c0eac8a6f9e SHA1 bd6f5264e413c0420baebb4de1fca47efe6dd06b SHA256 38da59caa5fa6f115267fd4c582568aab025f229efa2c9feeed2a26adadb0dbf Format Code Loading...

	l1nky.com/file/Wave-Installer.exe	ScriptElement	6.0 kB	2024-08-19	2024-08-19
URL l1nky.com/file/Wave-Installer.exe IP / ASN 188.114.97.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2024-08-19 Last Seen 2024-08-19 Times Seen 1 Size 6.0 kB (6035 bytes) MD5 dce7ab3b7ba14dfe2321085802ed1e91 SHA1 6473df3baa82c1f18b0e3a242c59e9257b8c6cbe SHA256 83a51e41e0e3ae779e032228c2f1620cd4c74cdd1662683cb5cc29a987e672c3 Format Code Loading...

HTTP Transactions (17)

URL IP Response Size

r10.o.lencr.org/

23.33.119.57

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.33.119.57

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-07-08

Last Seen2024-08-19

Times Seen34939

Size504 B (504 bytes)

MD5b34ca6af54e2b9fea57d418f5d1928f7

SHA1510b69f4470789a573217726d6f1a3d6ee765460

SHA25641e6a348aac9e9db44bfa14b3aa29d411f4489b375ae1f1be6b0d280af98541d

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "41E6A348AAC9E9DB44BFA14B3AA29D411F4489B375AE1F1BE6B0D280AF98541D"
Last-Modified: Mon, 08 Jul 2024 01:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20472
Expires: Wed, 10 Jul 2024 17:00:46 GMT
Date: Wed, 10 Jul 2024 11:19:34 GMT
Connection: keep-alive

r10.o.lencr.org/

23.33.119.57

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.33.119.57

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-07-09

Last Seen2024-08-19

Times Seen18846

Size504 B (504 bytes)

MD5c2f3e4e1f94efa7a80f9deeb3d459176

SHA17a8f013a3d13ffe4241b8e2a8b9ca63daeeace53

SHA2565f9feb641b1e74a7c14eee1104953d1e9faa0341d1f27fdbd50fa8207e6c0ac8

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5F9FEB641B1E74A7C14EEE1104953D1E9FAA0341D1F27FDBD50FA8207E6C0AC8"
Last-Modified: Tue, 09 Jul 2024 15:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3086
Expires: Wed, 10 Jul 2024 12:11:00 GMT
Date: Wed, 10 Jul 2024 11:19:34 GMT
Connection: keep-alive

r10.o.lencr.org/

23.33.119.57

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.33.119.57

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-07-10

Last Seen2024-08-19

Times Seen39709

Size504 B (504 bytes)

MD5e7492695b5254a3a63fcffb4f1ee8cec

SHA10361713c6d8129210245347284c7c6babfd28fb7

SHA2565d1bc1c01894fd88a0d4680490977488d6458bb58a98ace24ef8aa103538bc1f

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D1BC1C01894FD88A0D4680490977488D6458BB58A98ACE24EF8AA103538BC1F"
Last-Modified: Tue, 09 Jul 2024 23:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19171
Expires: Wed, 10 Jul 2024 16:39:06 GMT
Date: Wed, 10 Jul 2024 11:19:35 GMT
Connection: keep-alive

GET l1nky.com/file/Wave-Installer.exe

188.114.97.1

403 Forbidden

167 B

URL User Request GET HTTPS

l1nky.com/file/Wave-Installer.exe

IP / ASN

188.114.97.1

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeHTML document, ASCII text, with CRLF line terminators

First Seen2023-04-05

Last Seen2025-03-02

Times Seen190492

Size167 B (167 bytes)

MD50104c301c5e02bd6148b8703d19b3a73

SHA17436e0b4b1f8c222c38069890b75fa2baf9ca620

SHA256446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

Certificate Info

IssuerGoogle Trust Services LLC

Subjectl1nky.com

FingerprintDC:D0:A9:26:2B:BF:71:9B:D5:D1:CA:7A:3B:FD:3F:7F:DB:4E:EE:C1

ValidityFri, 24 May 2024 13:33:16 GMT - Thu, 22 Aug 2024 13:33:15 GMT

HTTP Headers

GET /file/Wave-Installer.exe HTTP/1.1
Host: l1nky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Wed, 10 Jul 2024 11:19:35 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 10 Jul 2024 12:19:35 GMT
Location: https://l1nky.com/file/Wave-Installer.exe
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FBRV6k%2Fb6oZrozkIPpBchYXEhztTpHBbrG7bUxrCNHFJ1Svsn0p3Pbh3%2BIrLhHdeQffYpdKemeHgeJ3CUzwPv6VSzuCyRDHycdc1%2FRN1VBWmy46pokJM50AtiiU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8a1028dde89a568a-OSL
alt-svc: h2=":443"; ma=60

r10.o.lencr.org/

23.33.119.57

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.33.119.57

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-07-09

Last Seen2024-08-19

Times Seen12065

Size504 B (504 bytes)

MD59b556e25e514a3cd5829bc4d938e5517

SHA185eeba07dc1438e7433ce7a145500164d842d5db

SHA25622f599883dc87540746708049ea46ec4eb88c81c924ba145a58bebd5ee3199cb

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "22F599883DC87540746708049EA46EC4EB88C81C924BA145A58BEBD5EE3199CB"
Last-Modified: Tue, 09 Jul 2024 16:21:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19435
Expires: Wed, 10 Jul 2024 16:43:30 GMT
Date: Wed, 10 Jul 2024 11:19:35 GMT
Connection: keep-alive

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.3.184

61 B

URL HTTPS

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

IP / ASN

104.17.3.184

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced

First Seen2023-08-25

Last Seen2025-05-14

Times Seen189286

Size61 B (61 bytes)

MD59246cca8fc3c00f50035f28e9f6b7f7d

SHA13aa538440f70873b574f40cd793060f53ec17a5d

SHA256c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zpb67/0x4AAAAAAADnPIDROrmt1Wwj/light/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 10 Jul 2024 11:19:36 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8a1028e2efc11c06-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8a1028e23f301c06/1720610376404/8IJ5Zdht2JllaeN

104.17.3.184

61 B

URL HTTPS

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/8a1028e23f301c06/1720610376404/8IJ5Zdht2JllaeN

IP / ASN

104.17.3.184

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typePNG image data, 19 x 34, 8-bit/color RGB, non-interlaced

First Seen2023-05-09

Last Seen2025-04-14

Times Seen81

Size61 B (61 bytes)

MD5f732cdc665b51d171a36826292964fa0

SHA156db4db079ee3cb070c3c79de095c0fd39030c18

SHA2567581fbd60e52f9cd205533d76611f39ccdb7b220ee694fb5e72ce92540f2ee01

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/i/8a1028e23f301c06/1720610376404/8IJ5Zdht2JllaeN HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zpb67/0x4AAAAAAADnPIDROrmt1Wwj/light/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 10 Jul 2024 11:19:36 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8a1028e7cbce1c06-OSL
alt-svc: h3=":443"; ma=86400

r10.o.lencr.org/

23.33.119.57

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.33.119.57

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-07-08

Last Seen2024-08-19

Times Seen36963

Size504 B (504 bytes)

MD5d7b2c37e4b6c062d80ad32046f42d3d8

SHA1131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c

SHA256317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2"
Last-Modified: Mon, 08 Jul 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8856
Expires: Wed, 10 Jul 2024 13:47:13 GMT
Date: Wed, 10 Jul 2024 11:19:37 GMT
Connection: keep-alive

r10.o.lencr.org/

23.33.119.57

504 B

URL HTTP

r10.o.lencr.org/

IP / ASN

23.33.119.57

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-07-08

Last Seen2024-08-19

Times Seen36963

Size504 B (504 bytes)

MD5d7b2c37e4b6c062d80ad32046f42d3d8

SHA1131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c

SHA256317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2"
Last-Modified: Mon, 08 Jul 2024 05:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8856
Expires: Wed, 10 Jul 2024 13:47:13 GMT
Date: Wed, 10 Jul 2024 11:19:37 GMT
Connection: keep-alive

POST l1nky.com/cdn-cgi/challenge-platform/h/b/flow/ov1/346787051:1720607066:2ty-q-eFllC5s8Skn9uvjlSJQLd3MSXigSyHYzxOx3E/8a1028de0c300b65/ae6b39e72da0191

188.114.96.1

200 OK

13 kB

URL POST HTTPS

l1nky.com/cdn-cgi/challenge-platform/h/b/flow/ov1/346787051:1720607066:2ty-q-eFllC5s8Skn9uvjlSJQLd3MSXigSyHYzxOx3E/8a1028de0c300b65/ae6b39e72da0191

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://l1nky.com/file/Wave-Installer.exe

Resource Info

File typeASCII text, with very long lines (16440), with no line terminators

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size13 kB (12886 bytes)

MD5fe8085a9dd926216eb27fae221e77857

SHA1447d4ebfb8cea0f2c8ffb4f4ab51d2a8d6a55688

SHA2561cf7128eac75ec52504de15b3364fc6104f8a6d8e5349f7d53b560ad93ad3bdb

Certificate Info

IssuerGoogle Trust Services LLC

Subjectl1nky.com

FingerprintDC:D0:A9:26:2B:BF:71:9B:D5:D1:CA:7A:3B:FD:3F:7F:DB:4E:EE:C1

ValidityFri, 24 May 2024 13:33:16 GMT - Thu, 22 Aug 2024 13:33:15 GMT

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/346787051:1720607066:2ty-q-eFllC5s8Skn9uvjlSJQLd3MSXigSyHYzxOx3E/8a1028de0c300b65/ae6b39e72da0191 HTTP/1.1
Host: l1nky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://l1nky.com/file/Wave-Installer.exe
Content-type: application/x-www-form-urlencoded
CF-Challenge: ae6b39e72da0191
Content-Length: 1665
Origin: https://l1nky.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 10 Jul 2024 11:19:35 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: opcmgrsuu+yDNtZO083O/8opSKjExrEpNm1qEeqUHvVNAFAAbDuS2XbldJpIOEn++cbUTlEP9A==$YdXoGtf7szwhV+tt
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nEqnvooesPRA%2BP%2Fp6tAuh3N9QfU8h86Obw%2FXAQWw6RAVfN1QLAo4YBm0x7WyaAfi4%2FBQuV2LD0cefjJqaM%2FgFZEZva0dDrOwm1o%2B6rG8ZGZO46%2BXAW3lHSGwzII%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a1028e10ecb0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8a1028e23f301c06/1720610376408/464573c1d1179aa1192cb35e112545c2f7a5a8ca31971a6af15b3e475df8c15a/ahTlkqdPjO5pj6Q

104.17.3.184

1 B

URL HTTPS

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/8a1028e23f301c06/1720610376408/464573c1d1179aa1192cb35e112545c2f7a5a8ca31971a6af15b3e475df8c15a/ahTlkqdPjO5pj6Q

IP / ASN

104.17.3.184

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typevery short file (no magic)

First Seen0001-01-01

Last Seen2025-08-10

Times Seen233762

Size1 B (1 bytes)

MD5ff44570aca8241914870afbc310cdb85

SHA158668e7669fd564d99db5d581fcdb6a5618440b5

SHA2566da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/pat/8a1028e23f301c06/1720610376408/464573c1d1179aa1192cb35e112545c2f7a5a8ca31971a6af15b3e475df8c15a/ahTlkqdPjO5pj6Q HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zpb67/0x4AAAAAAADnPIDROrmt1Wwj/light/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Wed, 10 Jul 2024 11:19:38 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gRkVzwdEXmqEZLLNeESVFwvelqMoxlxpq8Vs-R134wVoAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAj97f1ZYzqOz9uZOInjqnroOiRWozsb8-AGdrIys2h3QFK5IZrkOGHTHqwWtjbIQrQZZ9_GRg__UmOeszM9suMLDzs6ZswmFMyUhRlM-In-8D7wEx46F0qun6lQGUfOcvRaAQn29a3TkvpBEZsQJRO7ZXNWmJKtuzYxRvdKRysxXZz821Ru5Y1SbP9X81FgY-6qfZoEnuDNUVtP0s1x1mtXB-8jKUEhtasxg9zX1lOALi6aFUdjNZKYAV_HeFWsNF_K2I7c9LAcKYSkLYhLTK5HbtNadZFenSNIUWWg75Yml_iz24vEuWGXuoDTKGN0A62amDVvmcAKAOZy6LRqTpFQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tIEZFc8HRF5qhGSyzXhElRcL3pajKMZcaavFbPkdd-MFaABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAuOxqd5w4x94c5kJNZ2XRktqNIqGa8kZ99a4bR4a3MG42Haz0jlBIlIIlBDi3DmBmSE05ubIgBeyQDrMEvSHe88hB7QRQdp-QTZPamTgp7DhXVan_6UHzBLH2kRMkE8231rLW9MPNiz-L3tICupszueDJ-V4Etz8D2lgQAUbNISTXhJBO0mw3hrGpYYgLVirLFZqr-lxMtSZszk1beQxGoI3tKos-KE0UB7y_Ym_u7Xm8g78ZhxM6nnBRd9rfoKvSlwBs90Te3zpuKQCAZ8pbhj9PHbYM5LbtmlCYGDDVuNWc2-j6TxI_JsNxdupc7i6OjthVAt2baPDSxH9yc6b8CQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIEZFc8HRF5qhGSyzXhElRcL3pajKMZcaavFbPkdd-MFaABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAyhdYw1_euMTy-KtR-jTWxm4D-8wOhNUyQuLTdQC4yZCfo3QeGcHjtm5-n9WD7-3YGQsE-UsEJErlACuU2xZLTl0c9BGqIRhieSlpH0bXdQvQYNBgSF819iJSGgK6lchrXmfARE4v_svxCSBlP_7OhtlFg3tq5Alc6LmVaOvNgcc0K5p5HUoNC6IHFIHj_ahsjRtpQ2b5W9b623GAppiEWLhpE2JvChR6K2GISkBY4ujrV21oDZ8XXPObS3RYqnPtbYP3KZhpz1fNhQdzg_FEUazEtBEox_hCGVKeIVP1Gb2De1X3bUJCMT0AemR9kUeFG2bCXK8LQCd3AZ6aBqJF1wIDAQAB", max-age=20
server: cloudflare
cf-ray: 8a1028f08abb1c06-OSL
alt-svc: h3=":443"; ma=86400

GET l1nky.com/file/Wave-Installer.exe

188.114.96.1

403 Forbidden

2.4 MB

URL User Request GET HTTPS

l1nky.com/file/Wave-Installer.exe

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typePE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections

First Seen2024-07-07

Last Seen2024-11-16

Times Seen45

Size2.4 MB (2378752 bytes)

MD58ad8b6593c91d7960dad476d6d4af34f

SHA10a95f110c8264cde7768a3fd76db5687fda830ea

SHA25643e6ae7e38488e95741b1cad60843e7ce49419889285433eb4e697c175a153ab

Certificate Info

IssuerGoogle Trust Services LLC

Subjectl1nky.com

FingerprintDC:D0:A9:26:2B:BF:71:9B:D5:D1:CA:7A:3B:FD:3F:7F:DB:4E:EE:C1

ValidityFri, 24 May 2024 13:33:16 GMT - Thu, 22 Aug 2024 13:33:15 GMT

Detections

Analyzer	Verdict	Alert
VirusTotal	suspicious	VirusTotal - Scan result 4/74

HTTP Headers

POST /file/Wave-Installer.exe HTTP/1.1
Host: l1nky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://l1nky.com/file/Wave-Installer.exe?__cf_chl_tk=52q4i.FbzJKaYfCVFvsuojyTL5Saa6HsRKxoNLLQkMA-1720610375-0.0.1.1-3732
Content-Type: application/x-www-form-urlencoded
Content-Length: 4198
Origin: https://l1nky.com
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 10 Jul 2024 11:19:43 GMT
content-type: application/octet-stream
content-length: 2378752
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.l1nky.com; HttpOnly; Secure; SameSite=None
cf_clearance=Q7embjjZ0QiBbywP5eGuu_E8v2pgeux9bp9qFhKNQHs-1720610375-1.0.1.1-RTM8YI3KJEBFHHlvnq0rdZlAqdS03WTkGUctpl4qNcsA4NlHWQambat6lKIxVDZ4LVLRBHE7IZQXQTwNwAisew; Path=/; Expires=Thu, 10-Jul-25 11:19:42 GMT; Domain=.l1nky.com; HttpOnly; Secure; SameSite=None; Partitioned
last-modified: Tue, 09 Jul 2024 17:47:08 GMT
etag: "668d779c-244c00"
expires: Thu, 08 Aug 2024 20:02:14 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 55049
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yvudg8IBcHhA00h4RfplqOlPI1sC6vOjGIxoAoL%2BjU3SbDIqgmUhLtwjV%2Bt7WiSlxL10fwcQjLxXi7a8gusYVfL2Gr9%2BAvD9FfT6ib%2ByrWewm85V1wYqHUsD%2BD4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a10290db9fb0b65-OSL
alt-svc: h3=":443"; ma=86400

GET challenges.cloudflare.com/turnstile/v0/b/191f93ebdf8e/api.js?onload=IFegD3&render=explicit

104.17.3.184

200 OK

44 kB

URL GET HTTPS

challenges.cloudflare.com/turnstile/v0/b/191f93ebdf8e/api.js?onload=IFegD3&render=explicit

IP / ASN

104.17.3.184

#13335 CLOUDFLARENET

Requested byhttps://l1nky.com/file/Wave-Installer.exe

Resource Info

File typeJavaScript source, ASCII text, with very long lines (43537)

First Seen2024-07-05

Last Seen2024-08-19

Times Seen1169

Size44 kB (43538 bytes)

MD501f5112e432dd843f6083c0eac8a6f9e

SHA1bd6f5264e413c0420baebb4de1fca47efe6dd06b

SHA25638da59caa5fa6f115267fd4c582568aab025f229efa2c9feeed2a26adadb0dbf

Certificate Info

IssuerCloudflare, Inc.

Subjectchallenges.cloudflare.com

Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E

ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

HTTP Headers

GET /turnstile/v0/b/191f93ebdf8e/api.js?onload=IFegD3&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://l1nky.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 10 Jul 2024 11:19:35 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 03 Jul 2024 15:18:30 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1028e04a3c0b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET l1nky.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8a1028de0c300b65

188.114.96.1

200 OK

97 kB

URL GET HTTPS

l1nky.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8a1028de0c300b65

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://l1nky.com/file/Wave-Installer.exe

Resource Info

File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size97 kB (97151 bytes)

MD568430f4ffa4731c1d1e8f18d303229b6

SHA18fcd4f1bc9c18c31e862ef6c8ddf6633672056a3

SHA256352a59e9ca3f0eb81712601684174273917b04ab6f417d08c8e906d27d42b506

Certificate Info

IssuerGoogle Trust Services LLC

Subjectl1nky.com

FingerprintDC:D0:A9:26:2B:BF:71:9B:D5:D1:CA:7A:3B:FD:3F:7F:DB:4E:EE:C1

ValidityFri, 24 May 2024 13:33:16 GMT - Thu, 22 Aug 2024 13:33:15 GMT

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8a1028de0c300b65 HTTP/1.1
Host: l1nky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://l1nky.com/file/Wave-Installer.exe?__cf_chl_rt_tk=52q4i.FbzJKaYfCVFvsuojyTL5Saa6HsRKxoNLLQkMA-1720610375-0.0.1.1-3732
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 10 Jul 2024 11:19:35 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yBMafffvbC7D6lxPeuCMg5isN9XAwXbN59H%2B7OtkBH%2B9vEmn0LtR0rcTClL%2Fw%2BcEQenQ7n%2F%2F8u9lcNrmR4F3BU5PIWneRw1BiXFRmOU7xnZe2ITCiMN1FDpJUho%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8a1028df8daa0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zpb67/0x4AAAAAAADnPIDROrmt1Wwj/light/normal/auto/

104.17.3.184

200 OK

70 kB

URL GET HTTPS

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zpb67/0x4AAAAAAADnPIDROrmt1Wwj/light/normal/auto/

IP / ASN

104.17.3.184

#13335 CLOUDFLARENET

Requested byhttps://l1nky.com/file/Wave-Installer.exe

Resource Info

File typeHTML document, ASCII text, with very long lines (42151)

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size70 kB (69554 bytes)

MD59e6eece8be5c3709d3492186351157fa

SHA198c175be90982d728a82d6061b30d6d5afafcc88

SHA256c9f2f2e112e26fa76791a6e2e35ab9dfe51ce77ec3ca6fca9296391251345ce2

Certificate Info

IssuerCloudflare, Inc.

Subjectchallenges.cloudflare.com

Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E

ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/zpb67/0x4AAAAAAADnPIDROrmt1Wwj/light/normal/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 10 Jul 2024 11:19:36 GMT
content-type: text/html; charset=UTF-8
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
cross-origin-embedder-policy: require-corp
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
origin-agent-cluster: ?1
server: cloudflare
cf-ray: 8a1028e23f301c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET l1nky.com/favicon.ico

188.114.96.1

200 OK

102 kB

URL GET HTTPS

l1nky.com/favicon.ico

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://l1nky.com/file/Wave-Installer.exe

Resource Info

File typeMS Windows icon resource - 6 icons, -128x-128, 32 bits/pixel, 64x64, 32 bits/pixel

First Seen2024-06-29

Last Seen2024-08-19

Times Seen7

Size102 kB (102134 bytes)

MD5c825df8b8784b22fc216b3b18489c7f7

SHA15b4f5fc3eeefa4f56e7386122d5c2f697fef3007

SHA2566d23e030be2ac2a6cf5725a4e314e8a9392c60fc3374c7a72aec8acea25754bc

Certificate Info

IssuerGoogle Trust Services LLC

Subjectl1nky.com

FingerprintDC:D0:A9:26:2B:BF:71:9B:D5:D1:CA:7A:3B:FD:3F:7F:DB:4E:EE:C1

ValidityFri, 24 May 2024 13:33:16 GMT - Thu, 22 Aug 2024 13:33:15 GMT

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: l1nky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://l1nky.com/file/Wave-Installer.exe?__cf_chl_rt_tk=52q4i.FbzJKaYfCVFvsuojyTL5Saa6HsRKxoNLLQkMA-1720610375-0.0.1.1-3732
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 10 Jul 2024 11:19:35 GMT
content-type: image/x-icon
last-modified: Wed, 06 Jul 2022 09:50:05 GMT
etag: W/"62c55acd-18ef6"
expires: Sat, 13 Jul 2024 10:58:55 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2334039
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yntLkCgHggQn93f966f9wLA8epTFK5nx0w1OxSxcqJlVc5LV5BLpcSuLIxtYSv50lmwaG%2BBdOq1jMUAeoMyb0p%2FL2h%2FLiX4D10RazDcMwB5kf3xORstelUePQOo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1028dfcde30b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET l1nky.com/favicon.ico

188.114.96.1

200 OK

102 kB

URL GET HTTPS

l1nky.com/favicon.ico

IP / ASN

188.114.96.1

#13335 CLOUDFLARENET

Requested byhttps://l1nky.com/file/Wave-Installer.exe

Resource Info

File typeMS Windows icon resource - 6 icons, -128x-128, 32 bits/pixel, 64x64, 32 bits/pixel

First Seen2024-06-29

Last Seen2024-08-19

Times Seen7

Size102 kB (102134 bytes)

MD5c825df8b8784b22fc216b3b18489c7f7

SHA15b4f5fc3eeefa4f56e7386122d5c2f697fef3007

SHA2566d23e030be2ac2a6cf5725a4e314e8a9392c60fc3374c7a72aec8acea25754bc

Certificate Info

IssuerGoogle Trust Services LLC

Subjectl1nky.com

FingerprintDC:D0:A9:26:2B:BF:71:9B:D5:D1:CA:7A:3B:FD:3F:7F:DB:4E:EE:C1

ValidityFri, 24 May 2024 13:33:16 GMT - Thu, 22 Aug 2024 13:33:15 GMT

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: l1nky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://l1nky.com/file/Wave-Installer.exe
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 10 Jul 2024 11:19:35 GMT
content-type: image/x-icon
last-modified: Wed, 06 Jul 2022 09:50:05 GMT
etag: W/"62c55acd-18ef6"
expires: Sat, 13 Jul 2024 10:58:55 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2334039
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B58z3EkAXu14kbiwvtsn7Pd4jcGBwX8az%2FWtyzOrO%2Fo3iQTG5wj1vZ9ewmebrI6rGt87fBVG4oG4QKt7E9K8I2Qwb44JuDLauqOlNoG9Zye%2BCOr5Td76JAbHzAw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a1028e01e3a0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400