Report - brainbotfilebeatsave.com/indexwp.php?flow_id=77&flow_k=a074f8fdb2&source=cpanel&utm

Report Overview

Visitedpublic

2025-07-24 07:03:52

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
g.api.mega.co.nz	23332	2012-07-25	2013-12-26	2025-07-21	1.5 kB	1.6 kB	66.203.125.16
eu.static.mega.co.nz	64878	2012-07-25	2013-01-19	2025-07-20	25 kB	15 MB	66.203.124.37
brainbotfilebeatsave.com	unknown	2025-04-09	2025-07-22	2025-07-22	2.5 kB	45 kB	104.21.112.1
mega.nz	16544	2014-10-01	2014-11-03	2025-07-23	2.3 kB	211 kB	31.216.145.5
api.brainbotfilebeatsave.com	unknown	2025-04-09	2025-07-24	2025-07-24	2.6 kB	61 kB	104.21.112.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-07-24 07:03:30	low	Client IP	31.216.145.5	ET INFO File Sharing Domain Observed in TLS SNI (mega .nz)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-07-24	medium	brainbotfilebeatsave.com	Sinkholed

ThreatFox

Scan Date	Severity	Indicator	Alert
2025-07-22	medium	brainbotfilebeatsave.com	ClearFake

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	api.brainbotfilebeatsave.com/service-worker.js	ScriptElement	7.2 kB	2025-06-15	2025-08-01
URL api.brainbotfilebeatsave.com/service-worker.js IP / ASN 104.21.112.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2025-06-15 Last Seen 2025-08-01 Times Seen 28 Size 7.2 kB (7204 bytes) MD5 132fb59b33edb658898213d05c72678a SHA1 17d1d388c5516223fdd16c5309da1c409fe8ca19 SHA256 1369abfbcf45490e89b693bad8c9f415e88d130d0e1ba6e6abb912fee5556866 Format Code Loading...

	mega.nz/20c91a69-b18b-4858-b1d6-ecc2a5160568	ScriptElement	37 B	2023-03-07	2025-08-02
URL mega.nz/20c91a69-b18b-4858-b1d6-ecc2a5160568 IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-02 Times Seen 1220 Size 37 B (37 bytes) MD5 039bafef2406979c560430a61c2078ea SHA1 649f59b9386398ad8e609ec1a4b338e6656c02f8 SHA256 2e884b248bc8fd99426b98c9e2b0347d64a1d76e0cbed818a7ed42a09afa75b4 Format Code Loading...

	api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca	ScriptElement	3.6 kB	2025-06-04	2025-08-01
URL api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca IP / ASN 104.21.112.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-06-04 Last Seen 2025-08-01 Times Seen 33 Size 3.6 kB (3561 bytes) MD5 cb8cb4997b0670e46499d7f272f85a3d SHA1 fc2096cfced5e8f4bfeff8ca0f55567b041706e0 SHA256 2e5930671e44834071f5721bbe67a5cf10ded5155b2ff835417655ab9b3546b8 Format Code Loading...

	api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca	ScriptElement	4.1 kB	2025-07-03	2025-08-01
URL api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca IP / ASN 104.21.112.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-03 Last Seen 2025-08-01 Times Seen 20 Size 4.1 kB (4080 bytes) MD5 68c94f0177533160c77298b086b8a11a SHA1 3a85f265004288404c1c926b71b4a4304b72137a SHA256 f4e1a2827fdb02076f0aafebcef3dfd3a778ec234d98fac63fdcaa5d743ab9cf Format Code Loading...

	mega.nz/1d4c7573-47f5-415d-b210-67ffec1cdaf7	ScriptElement	28 kB	2023-03-07	2025-08-02
URL mega.nz/1d4c7573-47f5-415d-b210-67ffec1cdaf7 IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-02 Times Seen 1240 Size 28 kB (28398 bytes) MD5 30a72b79e1de3f7bb48ac9c38cfe26fb SHA1 6e76245e1d5a1ca1ffcb887175874f9ed9293766 SHA256 c8580c21984ea06cc3b42d1feae90eefc14605b24fc35c8edf1a7982295204d7 Format Code Loading...

	api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca	ScriptElement	8 B	2025-06-15	2025-08-01
URL api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca IP / ASN 104.21.112.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-06-15 Last Seen 2025-08-01 Times Seen 28 Size 8 B (8 bytes) MD5 b338d064511803754cf2bb55ff13e5a0 SHA1 6357dedd136e57367b9f87e62bfd53300484612e SHA256 6c9df6d9df1e75f198df49c652f1dee1a66dad511c1fd579f59be2b6952ec27d Format Code Loading...

	mega.nz/fc72ca56-1de7-4e87-895f-9d97c9a40795	ScriptElement	200 B	2025-01-10	2025-08-02
URL mega.nz/fc72ca56-1de7-4e87-895f-9d97c9a40795 IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2025-01-10 Last Seen 2025-08-02 Times Seen 287 Size 200 B (200 bytes) MD5 fcf609c0b705c1b873fc30e94a8a72f2 SHA1 4f4e6ae980f40abf9df2cb69b3b30ed8b92e0162 SHA256 ca0b050b1e4e5291f59c2b4a310ff9b1d161a3250b7d5c4537bade2ad77266b2 Format Code Loading...

	brainbotfilebeatsave.com/indexwp.php?flow_id=77&flow_k=a074f8fdb2&source=cpanel&utm_source	ScriptElement	34 B	2024-07-11	2025-08-02
URL brainbotfilebeatsave.com/indexwp.php?flow_id=77&flow_k=a074f8fdb2&source=cpanel&utm_source IP / ASN 104.21.112.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2024-07-11 Last Seen 2025-08-02 Times Seen 2987 Size 34 B (34 bytes) MD5 7a3157df84574c7db4e6452e8d99d3f6 SHA1 4cc8720cfd1f4cab01724b5c0002060659d50f72 SHA256 7ced21ea74954a0e9018eb4492acf135ca5ef6224b817c5f0812532786eeb565 Format Code Loading...

	api.brainbotfilebeatsave.com/assets/f.js	ScriptElement	38 kB	2025-06-04	2025-08-01
URL api.brainbotfilebeatsave.com/assets/f.js IP / ASN 104.21.112.1 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2025-06-04 Last Seen 2025-08-01 Times Seen 29 Size 38 kB (38307 bytes) MD5 8f6925152a6e85fc4ffe8a6b2ab33d7a SHA1 144c119b3c7e67bfa7edd026d054ddc1fab213e1 SHA256 f8880f8dc34550ad63ba2bcaf775ff01c2e8c0de3050fd6dfc6ceab531459020 Format Code Loading...

	mega.nz/secureboot.js?r=1753329205	ScriptElement	191 kB	2025-07-24	2025-07-31
URL mega.nz/secureboot.js?r=1753329205 IP / ASN 31.216.145.5 #203055 Datacenter Luxembourg S.A. Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-24 Last Seen 2025-07-31 Times Seen 21 Size 191 kB (191377 bytes) MD5 0213a120f24e45bb51d8898e8e8b040f SHA1 696df9dbc343ac9dde34745f8110e8d69082af11 SHA256 632058ecdb810e6c239a5ca73189acf796deb30c595558763ad7ccebbbd42dd0 Format Code Loading...

	mega.nz/055c3556-760e-4b35-9808-ab6ceb221d41	ScriptElement	73 B	2023-03-07	2025-08-02
URL mega.nz/055c3556-760e-4b35-9808-ab6ceb221d41 IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-02 Times Seen 1034 Size 73 B (73 bytes) MD5 0dd8130d7db464efa9c71a961b684944 SHA1 f68efee0c065dc94909e4e28fa9285df751d7fd0 SHA256 faade5384f10ce8bb1ff7428682f6f67d7f880411e370b8696ddd1364476116a Format Code Loading...

HTTP Transactions (68)

URL IP Response Size

GET api.brainbotfilebeatsave.com/assets/favicon.png

104.21.112.1

200 OK

684 B

URL

api.brainbotfilebeatsave.com/assets/favicon.png

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca

Resource Info

File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced

First Seen2025-06-04

Last Seen2025-08-01

Times Seen32

Size684 B (684 bytes)

MD562a6c1858c85c4b392577ccd3225cc28

SHA103b08c6bc995f593b35b405ac0bb782647b986e7

SHA256e7c1f9e59179a8656eb99f0e0e4abebb5447485861a6f3306c753c223f783f98

Certificate Info

IssuerCLOUDFLARE, INC.

Subjectbrainbotfilebeatsave.com

FingerprintFA:1F:CB:30:BC:CF:53:4D:6D:DB:E8:92:E8:D6:12:94:F7:46:57:E8

ValiditySat, 07 Jun 2025 14:50:27 GMT - Fri, 05 Sep 2025 14:57:52 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/favicon.png HTTP/1.1
Host: api.brainbotfilebeatsave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 24 Jul 2025 07:03:29 GMT
content-type: image/png
content-length: 684
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N3G2Xz%2F8og4tzN1%2BWRqItNfpv%2Bj6Py36TGSq%2BTsVuxIQk63WKS53H3m8D8Dn9NCIIcTLEfAYKA2%2Br%2FKay5FbFZz%2FmkjZlW8iX7w5UHii36qsnobOKLfWuSK8zgEmQy0Jg20lrDHjTfesXIP0rru9"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 29 May 2025 16:45:03 GMT
etag: "68388f0f-2ac"
expires: Thu, 21 Aug 2025 23:37:26 GMT
cache-control: max-age=2592000
accept-ranges: bytes
age: 113163
cf-cache-status: HIT
cf-ray: 96418edafacb569d-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3515&min_rtt=1044&rtt_var=1985&sent=88&recv=85&lost=0&retrans=0&sent_bytes=32918&recv_bytes=6023&delivery_rate=2799317&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=28913&unsent_bytes=0&cid=f9e34ae44afb22b0&ts=881&inflight_dur=47&x=40"

POST g.api.mega.co.nz/cs?id=0&v=2

66.203.125.16

200 OK

5 B

URL

g.api.mega.co.nz/cs?id=0&v=2

IP / ASN

66.203.125.16

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJSON text data

First Seen2023-07-01

Last Seen2025-07-29

Times Seen48

Size5 B (5 bytes)

MD599a7da4f893f5900e43d24d8a6551303

SHA1f34c74af71f32170b0ec0d11b78ebb08b76c62b7

SHA256a5708dd5d0754d3c4c3352828238e72eaea320f0a10623625d8e2b7e41a83c08

Certificate Info

IssuerSectigo Limited

Subject*.api.mega.co.nz

FingerprintF1:92:87:B0:48:35:8B:0C:87:B6:40:CD:57:89:6E:C8:6B:7B:5B:5D

ValidityTue, 07 Jan 2025 00:00:00 GMT - Fri, 06 Feb 2026 23:59:59 GMT

HTTP Headers

POST /cs?id=0&v=2 HTTP/1.1
Host: g.api.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Content-Type: text/plain;charset=UTF-8
Content-Length: 33
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/json
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type, X-Hashcash, MEGA-Chrome-Antileak
Access-Control-Expose-Headers: Original-Content-Length, X-Hashcash
Access-Control-Max-Age: 86400
Cache-Control: no-store
Original-Content-Length: 5
Content-Length: 5
Connection: keep-alive

GET eu.static.mega.co.nz/4/js/BDL-12_7efa7a65039224686395538cc550ad438db7861677bd2764d34f46e3cb0fe0b3.js

66.203.124.37

200 OK

573 kB

URL

eu.static.mega.co.nz/4/js/BDL-12_7efa7a65039224686395538cc550ad438db7861677bd2764d34f46e3cb0fe0b3.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-07-30

Times Seen6

Size573 kB (573213 bytes)

MD59ea2f65a1990b4d127cdd22ba3e74b9c

SHA1f59b32a4fdbe135f30effd319a50c202ba116fd6

SHA2567efa7a65039224686395538cc550ad438db7861677bd2764d34f46e3cb0fe0b3

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-12_7efa7a65039224686395538cc550ad438db7861677bd2764d34f46e3cb0fe0b3.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: application/javascript
content-length: 114399
last-modified: Thu, 24 Jul 2025 05:27:06 GMT
vary: Accept-Encoding
etag: "6881c42a-1bedf"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/html/contact-avatar_18cc8179fdcf896e202df0bee3a8a381667c7ab2e8206b7b157494d10beeae12.svg

66.203.124.37

200 OK

3.5 kB

URL

eu.static.mega.co.nz/4/html/contact-avatar_18cc8179fdcf896e202df0bee3a8a381667c7ab2e8206b7b157494d10beeae12.svg

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2024-09-01

Last Seen2025-08-02

Times Seen784

Size3.5 kB (3544 bytes)

MD58b77a56614a61554062526d9cc9abe1b

SHA1ea96f5169990d03c7e42819515b837bd33bc7e69

SHA25618cc8179fdcf896e202df0bee3a8a381667c7ab2e8206b7b157494d10beeae12

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/html/contact-avatar_18cc8179fdcf896e202df0bee3a8a381667c7ab2e8206b7b157494d10beeae12.svg HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: image/svg+xml
content-length: 632
last-modified: Thu, 24 Jul 2025 05:27:08 GMT
vary: Accept-Encoding
etag: "6881c42c-278"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/fonts/Inter-Regular.woff2?v=b4e5eb92b9448cca

66.203.124.37

200 OK

99 kB

URL

eu.static.mega.co.nz/4/fonts/Inter-Regular.woff2?v=b4e5eb92b9448cca

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 98756, version 1.0

First Seen2023-04-26

Last Seen2025-08-02

Times Seen750

Size99 kB (98756 bytes)

MD5a90c493e75dbd61aec1195dbb9bb6b06

SHA1a3e3ae8b6f79820b0b393a92fc613f50fb9f03c6

SHA256ed64c5d83f5fcc357eb8afd0a7b8d9912cae97d88dd57cccb64787bb643c7c76

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/fonts/Inter-Regular.woff2?v=b4e5eb92b9448cca HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: font/woff2
content-length: 98756
last-modified: Thu, 24 Jul 2025 03:54:00 GMT
vary: Accept-Encoding
etag: "6881ae58-181c4"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2

GET api.brainbotfilebeatsave.com/service-worker.js

104.21.112.1

200 OK

7.2 kB

URL

api.brainbotfilebeatsave.com/service-worker.js

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-06-15

Last Seen2025-08-01

Times Seen28

Size7.2 kB (7204 bytes)

MD5132fb59b33edb658898213d05c72678a

SHA117d1d388c5516223fdd16c5309da1c409fe8ca19

SHA2561369abfbcf45490e89b693bad8c9f415e88d130d0e1ba6e6abb912fee5556866

Certificate Info

IssuerCLOUDFLARE, INC.

Subjectbrainbotfilebeatsave.com

FingerprintFA:1F:CB:30:BC:CF:53:4D:6D:DB:E8:92:E8:D6:12:94:F7:46:57:E8

ValiditySat, 07 Jun 2025 14:50:27 GMT - Fri, 05 Sep 2025 14:57:52 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /service-worker.js HTTP/1.1
Host: api.brainbotfilebeatsave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 24 Jul 2025 07:03:29 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IUSE%2B0NIygwKDTHnzc5vpdpn%2FXX8V3ELQ19%2F%2BwOdow4Gi30wVXmZAuGLagUcgCbrXwiNout5Ai6l82skiET4xNZ4B3wLtCc0VK2RH9JU64gkrEaxZbp9OBoFApExJ%2FMvDWtohW9M%2Bgn%2FZ1eEH0Ke"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 09 Jun 2025 16:34:07 GMT
vary: Accept-Encoding
etag: W/"68470cff-1c24"
expires: Thu, 24 Jul 2025 19:03:29 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 96418ed9aac4569d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4197&min_rtt=1044&rtt_var=3655&sent=70&recv=80&lost=0&retrans=0&sent_bytes=11636&recv_bytes=5514&delivery_rate=1254894&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=21791&unsent_bytes=0&cid=f9e34ae44afb22b0&ts=772&inflight_dur=14&x=40"

GET eu.static.mega.co.nz/4/css/BDL-8_68884f11260bcba13238764cefe96eda2bba53263e8d8d79f596448374fc4d96.css

66.203.124.37

200 OK

49 kB

URL

eu.static.mega.co.nz/4/css/BDL-8_68884f11260bcba13238764cefe96eda2bba53263e8d8d79f596448374fc4d96.css

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeASCII text, with very long lines (2217)

First Seen2025-07-02

Last Seen2025-07-31

Times Seen72

Size49 kB (49411 bytes)

MD55aa4964c65ccc00eb89f0dd4bdce9f7a

SHA119fa97c6d81975fcbea4abcac1c0c6be4162f7db

SHA25668884f11260bcba13238764cefe96eda2bba53263e8d8d79f596448374fc4d96

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/css/BDL-8_68884f11260bcba13238764cefe96eda2bba53263e8d8d79f596448374fc4d96.css HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: text/css
content-length: 10272
last-modified: Thu, 24 Jul 2025 05:27:09 GMT
vary: Accept-Encoding
etag: "6881c42d-2820"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-loading

66.203.124.37

200 OK

306 kB

URL

eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-loading

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2025-07-02

Last Seen2025-08-02

Times Seen69

Size306 kB (305891 bytes)

MD57c56b153d7a6ca6dc20032b9a1b90a12

SHA11edf6810879152f68e9880e6c0c50a01c07303ba

SHA256153c1f00aa8cd19114ddb00ba827f6bb9eef156ecf09f4b4f1d73d51547da064

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/svg+xml
content-length: 85495
last-modified: Thu, 24 Jul 2025 05:27:04 GMT
vary: Accept-Encoding
etag: "6881c428-14df7"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/js/BDL-8_cb9f68de537a02ba1daf8781e4563d27a85855a7f6a3ddfa77436a3349bd087d.js

66.203.124.37

200 OK

642 kB

URL

eu.static.mega.co.nz/4/js/BDL-8_cb9f68de537a02ba1daf8781e4563d27a85855a7f6a3ddfa77436a3349bd087d.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-07-31

Times Seen13

Size642 kB (641771 bytes)

MD5555918e2ffd4c2b0ebd4afc351c8d504

SHA1b8dd06d321209059223074ada11700699ae5357f

SHA256cb9f68de537a02ba1daf8781e4563d27a85855a7f6a3ddfa77436a3349bd087d

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-8_cb9f68de537a02ba1daf8781e4563d27a85855a7f6a3ddfa77436a3349bd087d.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:32 GMT
content-type: application/javascript
content-length: 146163
last-modified: Thu, 24 Jul 2025 05:27:07 GMT
vary: Accept-Encoding
etag: "6881c42b-23af3"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/css/BDL-6_e6f304a93607de7fb54dc1574f20719cc0ed9cf98f868374ac6705a4986236b0.css

66.203.124.37

200 OK

71 kB

URL

eu.static.mega.co.nz/4/css/BDL-6_e6f304a93607de7fb54dc1574f20719cc0ed9cf98f868374ac6705a4986236b0.css

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeASCII text, with very long lines (618)

First Seen2025-07-13

Last Seen2025-07-31

Times Seen51

Size71 kB (70739 bytes)

MD568fd7f24aa709002c564cf5f56fd4d7c

SHA1587194009824f5365762732deef30aec9c5b4e68

SHA256e6f304a93607de7fb54dc1574f20719cc0ed9cf98f868374ac6705a4986236b0

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/css/BDL-6_e6f304a93607de7fb54dc1574f20719cc0ed9cf98f868374ac6705a4986236b0.css HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: text/css
content-length: 10840
last-modified: Thu, 24 Jul 2025 05:27:09 GMT
vary: Accept-Encoding
etag: "6881c42d-2a58"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/html/download.html-postbuild_66d11618650abc2ee3e5c2557a7f42fc536441c152c10729c066a6129aa531f6.html

66.203.124.37

200 OK

12 kB

URL

eu.static.mega.co.nz/4/html/download.html-postbuild_66d11618650abc2ee3e5c2557a7f42fc536441c152c10729c066a6129aa531f6.html

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeASCII text, with very long lines (12110), with no line terminators

First Seen2025-07-24

Last Seen2025-08-02

Times Seen15

Size12 kB (12110 bytes)

MD5cb6a65f7dd9616a61aed4fbecb3f2b3f

SHA111508edbdbe5e3e6acf2b0e76cc158b66e9b7fad

SHA25666d11618650abc2ee3e5c2557a7f42fc536441c152c10729c066a6129aa531f6

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/html/download.html-postbuild_66d11618650abc2ee3e5c2557a7f42fc536441c152c10729c066a6129aa531f6.html HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:34 GMT
content-type: text/html
content-length: 2432
last-modified: Thu, 24 Jul 2025 05:27:09 GMT
vary: Accept-Encoding
etag: "6881c42d-980"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/fonts/SourceSansPro-Regular.woff2?v=f71f612f60d5bb7e

66.203.124.37

200 OK

90 kB

URL

eu.static.mega.co.nz/4/fonts/SourceSansPro-Regular.woff2?v=f71f612f60d5bb7e

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 90132, version 2.655

First Seen2023-05-04

Last Seen2025-08-02

Times Seen1138

Size90 kB (90132 bytes)

MD594676e314a869cea8b70fc6698cb2c48

SHA1c681f9ea637011a45fa30e4750098dee378880d5

SHA25692090a2fc2ee13f67411a5e5778e3265e7401163c87beffa8e0392ccc765a8e8

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/fonts/SourceSansPro-Regular.woff2?v=f71f612f60d5bb7e HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:35 GMT
content-type: font/woff2
content-length: 90132
last-modified: Thu, 24 Jul 2025 03:54:00 GMT
vary: Accept-Encoding
etag: "6881ae58-16014"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/sprites-fm-mono.38aa11281ea3da66.woff2?h=3b6c9c271

66.203.124.37

200 OK

90 kB

URL

eu.static.mega.co.nz/4/imagery/sprites-fm-mono.38aa11281ea3da66.woff2?h=3b6c9c271

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 89804, version 1.0

First Seen2025-07-24

Last Seen2025-08-02

Times Seen23

Size90 kB (89804 bytes)

MD57bcc0307192a70ae19769d690c2b31a2

SHA103b48b36b917b86e5b7e13436edeabfd52315017

SHA2566276ca89e835ee0e0ef73cb91680c2e0e8756a29afbd8b6751d8d2cf34dc9158

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/sprites-fm-mono.38aa11281ea3da66.woff2?h=3b6c9c271 HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: font/woff2
content-length: 89804
last-modified: Thu, 24 Jul 2025 03:54:00 GMT
vary: Accept-Encoding
etag: "6881ae58-15ecc"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/mega-icons-3d-illustration-s4-3d.54642885c7fc0200.png

66.203.124.37

200 OK

21 kB

URL

eu.static.mega.co.nz/4/imagery/mega-icons-3d-illustration-s4-3d.54642885c7fc0200.png

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typePNG image data, 300 x 450, 8-bit colormap, non-interlaced

First Seen2024-10-27

Last Seen2025-08-02

Times Seen768

Size21 kB (21142 bytes)

MD5c75010d4d5c13ead3a962ba2c1f53bb9

SHA1dab95a4b027ef70e36e139c92fc440f19343071b

SHA256aff82b4fceb3dbf328b92d4f31fcb545c5ac9e8fe4bc47082a88550ed9a01ab1

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/mega-icons-3d-illustration-s4-3d.54642885c7fc0200.png HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/png
content-length: 21142
last-modified: Thu, 24 Jul 2025 03:54:00 GMT
etag: "6881ae58-5296"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/mega-icons-3d-icon-lightbulb-3d.bd8de57b8b075f61.png

66.203.124.37

200 OK

3.2 kB

URL

eu.static.mega.co.nz/4/imagery/mega-icons-3d-icon-lightbulb-3d.bd8de57b8b075f61.png

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typePNG image data, 104 x 104, 8-bit colormap, non-interlaced

First Seen2024-10-27

Last Seen2025-08-02

Times Seen769

Size3.2 kB (3212 bytes)

MD56c2e717caba4e6b7ba445f0c3bcc7286

SHA19db0868507f38f23e31690f12382d5dece715f41

SHA2567c9916432d5de81002c7b7bec85b40fc33dd343a8cfb8e86fd85291ac79cc765

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/mega-icons-3d-icon-lightbulb-3d.bd8de57b8b075f61.png HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/png
content-length: 3212
last-modified: Thu, 24 Jul 2025 03:54:00 GMT
etag: "6881ae58-c8c"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-twitter

66.203.124.37

200 OK

306 kB

URL

eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-twitter

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2025-07-02

Last Seen2025-08-02

Times Seen69

Size306 kB (305891 bytes)

MD57c56b153d7a6ca6dc20032b9a1b90a12

SHA11edf6810879152f68e9880e6c0c50a01c07303ba

SHA256153c1f00aa8cd19114ddb00ba827f6bb9eef156ecf09f4b4f1d73d51547da064

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/svg+xml
content-length: 85495
last-modified: Thu, 24 Jul 2025 05:27:04 GMT
vary: Accept-Encoding
etag: "6881c428-14df7"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/fonts/Inter-SemiBold.woff2?v=598278c73b24c2ce

66.203.124.37

200 OK

107 kB

URL

eu.static.mega.co.nz/4/fonts/Inter-SemiBold.woff2?v=598278c73b24c2ce

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 106788, version 1.0

First Seen2023-05-21

Last Seen2025-08-02

Times Seen457

Size107 kB (106788 bytes)

MD5920533ddd1d6ea543f7fc3e89b4556bb

SHA1bc11a427dcb55d1354a5ea07bbc353c57fe9cc0b

SHA256d6d0905419e1e821c57189396db46ffe335960bd68befedddaf9e73f3f2e7a3a

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/fonts/Inter-SemiBold.woff2?v=598278c73b24c2ce HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: font/woff2
content-length: 106788
last-modified: Thu, 24 Jul 2025 03:54:00 GMT
vary: Accept-Encoding
etag: "6881ae58-1a124"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/images/mega/psa/transferit_logo.png

66.203.124.37

200 OK

3.6 kB

URL

eu.static.mega.co.nz/4/images/mega/psa/transferit_logo.png

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typePNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced

First Seen2025-07-24

Last Seen2025-07-31

Times Seen13

Size3.6 kB (3648 bytes)

MD52b7624021c0a69335334fc241378ce54

SHA17f440f19e975f0109431d9b95f7bfd1493e0c6c6

SHA256b24afd918a2b7ae2f523024b9b3b3d8aa88668787e51e347758a92ccf814dcd1

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/images/mega/psa/transferit_logo.png HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:39 GMT
content-type: image/png
content-length: 3648
last-modified: Thu, 24 Jul 2025 05:04:29 GMT
etag: "6881bedd-e40"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2

GET brainbotfilebeatsave.com/indexwp.php?flow_id=77&flow_k=a074f8fdb2&source=cpanel&utm_source

104.21.112.1

200 OK

22 kB

URL

brainbotfilebeatsave.com/indexwp.php?flow_id=77&flow_k=a074f8fdb2&source=cpanel&utm_source

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeHTML document, Unicode text, UTF-8 text, with very long lines (2534)

First Seen2025-07-24

Last Seen2025-07-24

Times Seen1

Size22 kB (21461 bytes)

MD5fec973df0a15fd5841f0399bb8491b56

SHA119a8cf7201369f88b63e3c55fccebfe732df9428

SHA256f0e10bdf697dd5153ff6f8989a7e7a589536873e0127e8b72fc095d0d3cfa5b3

Certificate Info

IssuerCLOUDFLARE, INC.

Subjectbrainbotfilebeatsave.com

FingerprintFA:1F:CB:30:BC:CF:53:4D:6D:DB:E8:92:E8:D6:12:94:F7:46:57:E8

ValiditySat, 07 Jun 2025 14:50:27 GMT - Fri, 05 Sep 2025 14:57:52 GMT

Detections

Analyzer	Verdict	Alert
ThreatFox	malicious	ClearFake
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /indexwp.php?flow_id=77&flow_k=a074f8fdb2&source=cpanel&utm_source HTTP/1.1
Host: brainbotfilebeatsave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 24 Jul 2025 07:03:28 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: Accept-Encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=rb7scNGO4QGVMwZkdK%2BAK15qIIJLbluq51l29SnF%2FxkiAdMMJOUnNpHecfpxb9IvDT42rdsqfDTeWHqXFxrLJIqXGf7NLz4ygEtlveILdrNtWzrcUBc%3D"}]}
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 96418ed33ed60b45-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET brainbotfilebeatsave.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.21.112.1

302 Found

10 kB

URL

brainbotfilebeatsave.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://brainbotfilebeatsave.com/indexwp.php?flow_id=77&flow_k=a074f8fdb2&source=cpanel&utm_source

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5616686

Size10 kB (9979 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerCLOUDFLARE, INC.

Subjectbrainbotfilebeatsave.com

FingerprintFA:1F:CB:30:BC:CF:53:4D:6D:DB:E8:92:E8:D6:12:94:F7:46:57:E8

ValiditySat, 07 Jun 2025 14:50:27 GMT - Fri, 05 Sep 2025 14:57:52 GMT

Detections

Analyzer	Verdict	Alert
ThreatFox	malicious	ClearFake
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: brainbotfilebeatsave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 24 Jul 2025 07:03:29 GMT
content-length: 0
cf-ray: 96418ed78ac90b45-OSL
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/8359bcf47b68/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ekdB8zleTehzYccuaCLAmM%2F1FR%2BADebHuOJHpbNtclYrGLlDhvLeuF0%2FmDPGJIrPuK3pAS9CaRvpkkcYueDVF1Ip97zryWQ8V34PDVTrIBkLfVln20gAMvGVm5Zu3kyJkyLLM66SIp5anAM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=2058&min_rtt=371&rtt_var=2883&sent=18&recv=23&lost=0&retrans=0&sent_bytes=12148&recv_bytes=1950&delivery_rate=9362068&cwnd=257&unsent_bytes=0&cid=ec50d60a670d0246&ts=732&x=0"
X-Firefox-Spdy: h2

GET brainbotfilebeatsave.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/8359bcf47b68/main.js?

104.21.112.1

200 OK

10 kB

URL

brainbotfilebeatsave.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/8359bcf47b68/main.js?

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://brainbotfilebeatsave.com/indexwp.php?flow_id=77&flow_k=a074f8fdb2&source=cpanel&utm_source

Resource Info

File typeJavaScript source, ASCII text, with very long lines (9979), with no line terminators

First Seen2025-07-24

Last Seen2025-07-24

Times Seen2

Size10 kB (9979 bytes)

MD5255b09e28480a1f836d42797f0af8eb1

SHA13d2240474fee9a69a1d7008fb82542d8d6e3327d

SHA256f3fad6eea74ee4fb71d18547134cfcb72aacc5b23afc49a87c9cf9403c0cacb3

Certificate Info

IssuerCLOUDFLARE, INC.

Subjectbrainbotfilebeatsave.com

FingerprintFA:1F:CB:30:BC:CF:53:4D:6D:DB:E8:92:E8:D6:12:94:F7:46:57:E8

ValiditySat, 07 Jun 2025 14:50:27 GMT - Fri, 05 Sep 2025 14:57:52 GMT

Detections

Analyzer	Verdict	Alert
ThreatFox	malicious	ClearFake
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/8359bcf47b68/main.js? HTTP/1.1
Host: brainbotfilebeatsave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 24 Jul 2025 07:03:29 GMT
content-type: application/javascript; charset=UTF-8
content-encoding: br
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EF8%2BfswmY8QIVbNzHHke4qz1PCpYFOFkH1IWEG9rsg2Ju5KtXGWfIzkTYlkaRGbg2ZYlGqOv%2FZNFhuub%2BHNmUXthqQ4pWwxTa2dunbYAevouiaskZVMPCzApAaVqSr4ZMuJxip3QcD3WUo4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 96418ed7caf60b45-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1929&min_rtt=371&rtt_var=2419&sent=19&recv=25&lost=0&retrans=0&sent_bytes=12747&recv_bytes=2062&delivery_rate=9362068&cwnd=257&unsent_bytes=0&cid=ec50d60a670d0246&ts=762&x=0"
X-Firefox-Spdy: h2

GET api.brainbotfilebeatsave.com/assets/f.js

104.21.112.1

200 OK

38 kB

URL

api.brainbotfilebeatsave.com/assets/f.js

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca

Resource Info

File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (38299)

First Seen2025-06-04

Last Seen2025-08-01

Times Seen29

Size38 kB (38307 bytes)

MD58f6925152a6e85fc4ffe8a6b2ab33d7a

SHA1144c119b3c7e67bfa7edd026d054ddc1fab213e1

SHA256f8880f8dc34550ad63ba2bcaf775ff01c2e8c0de3050fd6dfc6ceab531459020

Certificate Info

IssuerCLOUDFLARE, INC.

Subjectbrainbotfilebeatsave.com

FingerprintFA:1F:CB:30:BC:CF:53:4D:6D:DB:E8:92:E8:D6:12:94:F7:46:57:E8

ValiditySat, 07 Jun 2025 14:50:27 GMT - Fri, 05 Sep 2025 14:57:52 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/f.js HTTP/1.1
Host: api.brainbotfilebeatsave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 24 Jul 2025 07:03:29 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fdFK1y1x4knNKyQiUKH8wkMHKDcWHV4avUTjwGPCqOYZyWEIRi%2FKePJs59Z05RPq2ytO1OASD%2FBQ7AfKxly%2FgA3xsZZoMmUKmIW3smpOwttCq14rNZJ0y1OL%2FkuCf1hMMj6tvjOABuPn0Z7GgUHJ"}],"group":"cf-nel","max_age":604800}
last-modified: Thu, 29 May 2025 16:45:03 GMT
vary: Accept-Encoding
etag: "68388f0f-95a3"
expires: Thu, 24 Jul 2025 19:03:29 GMT
cache-control: max-age=43200
content-encoding: gzip
cf-cache-status: REVALIDATED
cf-ray: 96418ed9aac3569d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4197&min_rtt=1044&rtt_var=3655&sent=73&recv=80&lost=0&retrans=0&sent_bytes=14558&recv_bytes=5514&delivery_rate=1254894&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=21791&unsent_bytes=0&cid=f9e34ae44afb22b0&ts=776&inflight_dur=14&x=40"

GET eu.static.mega.co.nz/4/js/BDL-2_05c6744824e5ee76d0d2067a116dba1e530ce1355355bc6fb1d2716af82d52d6.js

66.203.124.37

200 OK

649 kB

URL

eu.static.mega.co.nz/4/js/BDL-2_05c6744824e5ee76d0d2067a116dba1e530ce1355355bc6fb1d2716af82d52d6.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text, with very long lines (351)

First Seen2025-07-17

Last Seen2025-07-31

Times Seen29

Size649 kB (648716 bytes)

MD53f4f4d1c77e7725c5d5cbc192eb7216c

SHA156236253ff6a3f196b4d46a67cd9503b9fbfb9ec

SHA25605c6744824e5ee76d0d2067a116dba1e530ce1355355bc6fb1d2716af82d52d6

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-2_05c6744824e5ee76d0d2067a116dba1e530ce1355355bc6fb1d2716af82d52d6.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:32 GMT
content-type: application/javascript
content-length: 150661
last-modified: Thu, 24 Jul 2025 05:27:06 GMT
vary: Accept-Encoding
etag: "6881c42a-24c85"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

POST g.api.mega.co.nz/cs?id=0

66.203.125.16

200 OK

215 B

URL

g.api.mega.co.nz/cs?id=0

IP / ASN

66.203.125.16

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJSON text data

First Seen2025-07-02

Last Seen2025-08-02

Times Seen124

Size215 B (215 bytes)

MD59736634456c936319a5253d57ca92739

SHA18bbdc413794283eadae949ae5b8e43cc1aa4ad9d

SHA2563d264993e5eeaa571d4420fdd2a6bdb2bb3715e913cc0baed33cbadfe5a1c490

Certificate Info

IssuerSectigo Limited

Subject*.api.mega.co.nz

FingerprintF1:92:87:B0:48:35:8B:0C:87:B6:40:CD:57:89:6E:C8:6B:7B:5B:5D

ValidityTue, 07 Jan 2025 00:00:00 GMT - Fri, 06 Feb 2026 23:59:59 GMT

HTTP Headers

POST /cs?id=0 HTTP/1.1
Host: g.api.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Content-Type: text/plain;charset=UTF-8
Content-Length: 13
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/json
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type, X-Hashcash, MEGA-Chrome-Antileak
Access-Control-Expose-Headers: Original-Content-Length, X-Hashcash
Access-Control-Max-Age: 86400
Cache-Control: no-store
Original-Content-Length: 215
Content-Length: 215
Connection: keep-alive

GET eu.static.mega.co.nz/4/js/BDL-4_e50680fe8026312da47bf80d6c51d39650300d6c97f032a0a2d441fd7ef35648.js

66.203.124.37

200 OK

601 kB

URL

eu.static.mega.co.nz/4/js/BDL-4_e50680fe8026312da47bf80d6c51d39650300d6c97f032a0a2d441fd7ef35648.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-07-31

Times Seen13

Size601 kB (600728 bytes)

MD5aa9a952534fe0688624d0e5961278efa

SHA18c3963ce1956d59c131b60ec98530cb81e847945

SHA256e50680fe8026312da47bf80d6c51d39650300d6c97f032a0a2d441fd7ef35648

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-4_e50680fe8026312da47bf80d6c51d39650300d6c97f032a0a2d441fd7ef35648.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:32 GMT
content-type: application/javascript
content-length: 134732
last-modified: Thu, 24 Jul 2025 05:27:06 GMT
vary: Accept-Encoding
etag: "6881c42a-20e4c"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/css/BDL-1_360d599cfa1de34383e5d9830c441892a0926be17d5f9c9cd7cb9906bbf4c6e3.css

66.203.124.37

200 OK

522 kB

URL

eu.static.mega.co.nz/4/css/BDL-1_360d599cfa1de34383e5d9830c441892a0926be17d5f9c9cd7cb9906bbf4c6e3.css

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeASCII text, with very long lines (764)

First Seen2025-07-24

Last Seen2025-08-02

Times Seen23

Size522 kB (521747 bytes)

MD509a86af3c68ec1e88a7b64ef3c2029a5

SHA1be4f80392a95edbca7c67f88d279349bb1e93b7b

SHA256360d599cfa1de34383e5d9830c441892a0926be17d5f9c9cd7cb9906bbf4c6e3

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/css/BDL-1_360d599cfa1de34383e5d9830c441892a0926be17d5f9c9cd7cb9906bbf4c6e3.css HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:32 GMT
content-type: text/css
content-length: 83749
last-modified: Thu, 24 Jul 2025 05:27:09 GMT
vary: Accept-Encoding
etag: "6881c42d-14725"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/mega-icons-3d-icon-bucket-3d.309b7aad111304f7.png

66.203.124.37

200 OK

5.9 kB

URL

eu.static.mega.co.nz/4/imagery/mega-icons-3d-icon-bucket-3d.309b7aad111304f7.png

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typePNG image data, 128 x 128, 8-bit colormap, non-interlaced

First Seen2024-10-27

Last Seen2025-08-02

Times Seen769

Size5.9 kB (5917 bytes)

MD5829203ee3e16adc614a3152e72293751

SHA115c5ec593711488f65965a2517530fdcedf19fb7

SHA25630b5b465af353f56efbb33ac6f49a9a68059719f3dc1f89f623d40b41d422657

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/mega-icons-3d-icon-bucket-3d.309b7aad111304f7.png HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/png
content-length: 5917
last-modified: Thu, 24 Jul 2025 03:54:00 GMT
etag: "6881ae58-171d"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2

GET mega.nz/favicon.ico

31.216.145.5

200 OK

6.5 kB

URL

mega.nz/favicon.ico

IP / ASN

31.216.145.5

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeMS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel

First Seen2023-05-12

Last Seen2025-08-02

Times Seen1176

Size6.5 kB (6518 bytes)

MD572f13fa5f987ea923a68a818d38fb540

SHA1f014620d35787fcfdef193c20bb383f5655b9e1e

SHA25637127c1a29c164cdaa75ec72ae685094c2468fe0577f743cb1f307d23dd35ec1

Certificate Info

IssuerLet's Encrypt

Subjectmega.nz

Fingerprint38:60:8A:BB:CC:01:11:D1:C2:45:14:01:44:2C:67:AF:11:6F:A1:74

ValidityFri, 20 Jun 2025 21:02:56 GMT - Thu, 18 Sep 2025 21:02:55 GMT

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: mega.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/file/omZUzToC
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/x-icon
Content-Length: 1029
Cache-Control: max-age=8640000
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: MEGA-Chrome-Antileak
Access-Control-Max-Age: 86400
Content-Encoding: gzip

GET api.brainbotfilebeatsave.com/?jsc=88812dd4960bc153a072842bc0d08354_8071&f=ae06c0d9120d9c016079d8c1f3a44d2f&t=24ac12da4457cbe57ffa3ae3dffcc2ca

104.21.112.1

200 OK

524 B

URL

api.brainbotfilebeatsave.com/?jsc=88812dd4960bc153a072842bc0d08354_8071&f=ae06c0d9120d9c016079d8c1f3a44d2f&t=24ac12da4457cbe57ffa3ae3dffcc2ca

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca

Resource Info

File typeASCII text, with very long lines (524), with no line terminators

First Seen2025-07-21

Last Seen2025-07-24

Times Seen5

Size524 B (524 bytes)

MD5c757d58eb9c24205000ce7cfa4007568

SHA16947d068805ae325a58cbb1f6add6379d2c5eb60

SHA256b2ba5171727781bf3f1e263417c668b007948fe11d7e60fdf133d37d5eeacbe0

Certificate Info

IssuerCLOUDFLARE, INC.

Subjectbrainbotfilebeatsave.com

FingerprintFA:1F:CB:30:BC:CF:53:4D:6D:DB:E8:92:E8:D6:12:94:F7:46:57:E8

ValiditySat, 07 Jun 2025 14:50:27 GMT - Fri, 05 Sep 2025 14:57:52 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?jsc=88812dd4960bc153a072842bc0d08354_8071&f=ae06c0d9120d9c016079d8c1f3a44d2f&t=24ac12da4457cbe57ffa3ae3dffcc2ca HTTP/1.1
Host: api.brainbotfilebeatsave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 24 Jul 2025 07:03:30 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D2772aUMHt3cTiCH3%2FbQgBsiG9RMXvwYqZ6q7GsniNDMZmsggkKR%2BDwPrsLHCP8bHK%2BEwLyaWH%2BkuyMEAex62KQGThIpfL0o1BEQDNM4rYnvtDBdK5RRIj5fkcFsQbyZu7HmYiVrs5sfY5SkeNRG"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 96418ee0cb07569d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3662&min_rtt=1044&rtt_var=1782&sent=90&recv=87&lost=0&retrans=0&sent_bytes=34342&recv_bytes=6427&delivery_rate=2799317&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=28913&unsent_bytes=0&cid=f9e34ae44afb22b0&ts=1911&inflight_dur=72&x=40"

GET eu.static.mega.co.nz/4/images/mega/dialog-sprite.png?v=57a6bd1346996955

66.203.124.37

200 OK

31 kB

URL

eu.static.mega.co.nz/4/images/mega/dialog-sprite.png?v=57a6bd1346996955

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typePNG image data, 160 x 7432, 8-bit colormap, non-interlaced

First Seen2023-05-12

Last Seen2025-08-02

Times Seen731

Size31 kB (30699 bytes)

MD5c53c4b781f53b21562990926425abfd3

SHA1fff91c4acd5d0c187ad634b79b2619dae9af58ad

SHA2561692f9c36f3aaa9d3e251a92fd2615b55d6f8e8e0bb286fa87184ecb4e20525c

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/images/mega/dialog-sprite.png?v=57a6bd1346996955 HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/png
content-length: 30699
last-modified: Thu, 24 Jul 2025 03:54:00 GMT
etag: "6881ae58-77eb"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2

GET brainbotfilebeatsave.com/cdn-cgi/zaraz/s.js?z=JTdCJTIyZXhlY3V0ZWQlMjIlM0ElNUIlMjJQYWdldmlldyUyMiUyQyUyMmdhanMlMjIlMkMlMjJpU1d6JTIyJTJDJTIydGh3YiUyMiU1RCUyQyUyMnQlMjIlM0ElMjJDbG91ZGZsYXJlJTIwJTdDJTIwV2ViJTIwUGVyZm9ybWFuY2UlMjAlMjYlMjBTZWN1cml0eSUyMiUyQyUyMnglMjIlM0EwLjcxMzU0MzM4MDMyNTglMkMlMjJ3JTIyJTNBMTI4MCUyQyUyMmglMjIlM0ExMDI0JTJDJTIyaiUyMiUzQTEwMjQlMkMlMjJlJTIyJTNBMTI4MCUyQyUyMmwlMjIlM0ElMjJodHRwcyUzQSUyRiUyRmJyYWluYm90ZmlsZWJlYXRzYXZlLmNvbSUyRmluZGV4d3AucGhwJTNGZmxvd19pZCUzRDc3JTI2Zmxvd19rJTNEYTA3NGY4ZmRiMiUyNnNvdXJjZSUzRGNwYW5lbCUyNnV0bV9zb3VyY2UlMjIlMkMlMjJyJTIyJTNBJTIyJTIyJTJDJTIyayUyMiUzQTI0JTJDJTIybiUyMiUzQSUyMlVURi04JTIyJTJDJTIybyUyMiUzQTAlMkMlMjJxJTIyJTNBJTVCJTVEJTdE

104.21.112.1

404 Not Found

0 B

URL

brainbotfilebeatsave.com/cdn-cgi/zaraz/s.js?z=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

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byhttps://brainbotfilebeatsave.com/indexwp.php?flow_id=77&flow_k=a074f8fdb2&source=cpanel&utm_source

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-03

Times Seen5616686

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerCLOUDFLARE, INC.

Subjectbrainbotfilebeatsave.com

FingerprintFA:1F:CB:30:BC:CF:53:4D:6D:DB:E8:92:E8:D6:12:94:F7:46:57:E8

ValiditySat, 07 Jun 2025 14:50:27 GMT - Fri, 05 Sep 2025 14:57:52 GMT

Detections

Analyzer	Verdict	Alert
ThreatFox	malicious	ClearFake
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/zaraz/s.js?z=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 HTTP/1.1
Host: brainbotfilebeatsave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brainbotfilebeatsave.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Thu, 24 Jul 2025 07:03:29 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UgKUpq%2F5JbBrJChN4zwJ%2FMxCPm%2FQUym5cxhwlu9FTwyB%2FcD50%2Fh6hERUXmvrWUkeDS8OXMYno82lMpG3fS2PcpRkABPS2ANclZg10BEd8KLHQz3vBto%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 96418ed79acb0b45-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/js/BDL-5_9eb2cfcea0bfa226520c88ac770f48afc221cd57d3d5edd7760ad7154563b911.js

66.203.124.37

200 OK

654 kB

URL

eu.static.mega.co.nz/4/js/BDL-5_9eb2cfcea0bfa226520c88ac770f48afc221cd57d3d5edd7760ad7154563b911.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-07-31

Times Seen13

Size654 kB (654311 bytes)

MD5c519f13cadb54315c3e7d8f6e0db8a66

SHA17bdc25841d565240678d641dc7da8e0f7d0121c0

SHA2569eb2cfcea0bfa226520c88ac770f48afc221cd57d3d5edd7760ad7154563b911

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-5_9eb2cfcea0bfa226520c88ac770f48afc221cd57d3d5edd7760ad7154563b911.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:32 GMT
content-type: application/javascript
content-length: 148993
last-modified: Thu, 24 Jul 2025 05:27:08 GMT
vary: Accept-Encoding
etag: "6881c42c-24601"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/html/templates_c6e00e84e24e0a07552adac5bc8cc9110422a22dde575d8e7bb0e17e76aaf3cf.json

66.203.124.37

200 OK

672 kB

URL

eu.static.mega.co.nz/4/html/templates_c6e00e84e24e0a07552adac5bc8cc9110422a22dde575d8e7bb0e17e76aaf3cf.json

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJSON text data

First Seen2025-07-24

Last Seen2025-07-31

Times Seen13

Size672 kB (671975 bytes)

MD56988726f6cac7135a287b470ece3bc93

SHA1d91c4caf600de5b996b6f6036d823bbe3ad29de3

SHA256c6e00e84e24e0a07552adac5bc8cc9110422a22dde575d8e7bb0e17e76aaf3cf

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/html/templates_c6e00e84e24e0a07552adac5bc8cc9110422a22dde575d8e7bb0e17e76aaf3cf.json HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:32 GMT
content-type: application/json
content-length: 99815
last-modified: Thu, 24 Jul 2025 05:27:08 GMT
vary: Accept-Encoding
etag: "6881c42c-185e7"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/css/BDL-2_97492be8229b8a8aa80e6313526106984a896d8f649b3e38821da8dbb494332b.css

66.203.124.37

200 OK

28 kB

URL

eu.static.mega.co.nz/4/css/BDL-2_97492be8229b8a8aa80e6313526106984a896d8f649b3e38821da8dbb494332b.css

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeASCII text, with very long lines (456)

First Seen2025-07-17

Last Seen2025-08-02

Times Seen27

Size28 kB (27608 bytes)

MD5413add780e693bbf39203c8e4a00a49a

SHA10b436ec6794f7ef5c63827825fb4a6a812f0ba29

SHA25697492be8229b8a8aa80e6313526106984a896d8f649b3e38821da8dbb494332b

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/css/BDL-2_97492be8229b8a8aa80e6313526106984a896d8f649b3e38821da8dbb494332b.css HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:32 GMT
content-type: text/css
content-length: 4455
last-modified: Thu, 24 Jul 2025 05:27:09 GMT
vary: Accept-Encoding
etag: "6881c42d-1167"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/mega-icons-3d-icon-key-3d.10e986479b570c8a.png

66.203.124.37

200 OK

3.2 kB

URL

eu.static.mega.co.nz/4/imagery/mega-icons-3d-icon-key-3d.10e986479b570c8a.png

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typePNG image data, 96 x 96, 8-bit colormap, non-interlaced

First Seen2024-10-27

Last Seen2025-08-02

Times Seen769

Size3.2 kB (3159 bytes)

MD5719b56b6986378fc91dd50c591759d7a

SHA12be2b44a26ffa67d3ec7d8a5f3d711cd261fc202

SHA25601fa8ea62966f7a58ac5d84a1f91660ee5341b3ce29b8d80ef02c10d7ad1cbaa

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/mega-icons-3d-icon-key-3d.10e986479b570c8a.png HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/png
content-length: 3159
last-modified: Thu, 24 Jul 2025 03:54:00 GMT
etag: "6881ae58-c57"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/images/sprites/fm-illustration-sprite-wide.svg?v=e397e234dc118de4

66.203.124.37

200 OK

69 kB

URL

eu.static.mega.co.nz/4/images/sprites/fm-illustration-sprite-wide.svg?v=e397e234dc118de4

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2023-10-16

Last Seen2025-08-02

Times Seen839

Size69 kB (68811 bytes)

MD5770b69c3df131f0ebc4b0ce308d1ef33

SHA167f2e3f1036b6ba9cf541175c98c7503a308a517

SHA256a5169bc493a31b5513e7fb9357bb189e053f76a9c7d4a45232c145554bbeb075

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/images/sprites/fm-illustration-sprite-wide.svg?v=e397e234dc118de4 HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/svg+xml
content-length: 22129
last-modified: Thu, 24 Jul 2025 05:27:05 GMT
vary: Accept-Encoding
etag: "6881c429-5671"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/js/BDL-6_0daa93a448d33e7e399debba02d61990e67437247475e7ff6ed915d9c91240a5.js

66.203.124.37

200 OK

378 kB

URL

eu.static.mega.co.nz/4/js/BDL-6_0daa93a448d33e7e399debba02d61990e67437247475e7ff6ed915d9c91240a5.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-13

Last Seen2025-07-31

Times Seen51

Size378 kB (377595 bytes)

MD53d65732af30e29e41070d77070aeb1de

SHA1daac6d1f2d12eff0e8543d5a63811868e9980470

SHA2560daa93a448d33e7e399debba02d61990e67437247475e7ff6ed915d9c91240a5

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-6_0daa93a448d33e7e399debba02d61990e67437247475e7ff6ed915d9c91240a5.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:32 GMT
content-type: application/javascript
content-length: 83825
last-modified: Thu, 24 Jul 2025 05:27:06 GMT
vary: Accept-Encoding
etag: "6881c42a-14771"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/js/BDL-7_68b8ddd8cc8563999e9b4e46a744372fccfd30a9a7bcc7299574bcf2fb286358.js

66.203.124.37

200 OK

595 kB

URL

eu.static.mega.co.nz/4/js/BDL-7_68b8ddd8cc8563999e9b4e46a744372fccfd30a9a7bcc7299574bcf2fb286358.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-07-30

Times Seen6

Size595 kB (594780 bytes)

MD5b4ede7fd0be3637f2c276600771b7aaa

SHA1f545b3e83f563777b9d749d7dc76135969d1ec13

SHA25668b8ddd8cc8563999e9b4e46a744372fccfd30a9a7bcc7299574bcf2fb286358

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-7_68b8ddd8cc8563999e9b4e46a744372fccfd30a9a7bcc7299574bcf2fb286358.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:32 GMT
content-type: application/javascript
content-length: 115128
last-modified: Thu, 24 Jul 2025 05:27:06 GMT
vary: Accept-Encoding
etag: "6881c42a-1c1b8"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/css/BDL-3_089992bb08f8a834da51fe7bdcfe99eac74433e769722d181410a6bd4cda4923.css

66.203.124.37

200 OK

294 kB

URL

eu.static.mega.co.nz/4/css/BDL-3_089992bb08f8a834da51fe7bdcfe99eac74433e769722d181410a6bd4cda4923.css

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeASCII text, with very long lines (550)

First Seen2025-07-24

Last Seen2025-07-31

Times Seen13

Size294 kB (293995 bytes)

MD5aee3d5482defb173007b60695b5dd427

SHA12c460afb00b9e4f079186fe4e85bf80543e61e88

SHA256089992bb08f8a834da51fe7bdcfe99eac74433e769722d181410a6bd4cda4923

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/css/BDL-3_089992bb08f8a834da51fe7bdcfe99eac74433e769722d181410a6bd4cda4923.css HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:32 GMT
content-type: text/css
content-length: 34841
last-modified: Thu, 24 Jul 2025 05:27:09 GMT
vary: Accept-Encoding
etag: "6881c42d-8819"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/js/BDL-9_7783917a5e89eb927ea90fac691902d0b83097dd8c39e64554b8e70a6c3cf360.js

66.203.124.37

200 OK

656 kB

URL

eu.static.mega.co.nz/4/js/BDL-9_7783917a5e89eb927ea90fac691902d0b83097dd8c39e64554b8e70a6c3cf360.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-07-31

Times Seen13

Size656 kB (655515 bytes)

MD51dfcb7c64c45c487f18026373b06764c

SHA1c72e16fe20f3f3a2c334dfea3a26a950087f16e9

SHA2567783917a5e89eb927ea90fac691902d0b83097dd8c39e64554b8e70a6c3cf360

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-9_7783917a5e89eb927ea90fac691902d0b83097dd8c39e64554b8e70a6c3cf360.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: application/javascript
content-length: 131949
last-modified: Thu, 24 Jul 2025 05:27:06 GMT
vary: Accept-Encoding
etag: "6881c42a-2036d"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/js/BDL-11_9dcf8b770e082ec4bb53ffb42d55f4d7d853fe746d6e1fd5d061b7a8df842358.js

66.203.124.37

200 OK

548 kB

URL

eu.static.mega.co.nz/4/js/BDL-11_9dcf8b770e082ec4bb53ffb42d55f4d7d853fe746d6e1fd5d061b7a8df842358.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-07-30

Times Seen6

Size548 kB (548499 bytes)

MD5729cc354e8a16a14031639cc65e4f795

SHA11dc73ba485f2668a54aa1176f88df8a0186e7103

SHA2569dcf8b770e082ec4bb53ffb42d55f4d7d853fe746d6e1fd5d061b7a8df842358

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-11_9dcf8b770e082ec4bb53ffb42d55f4d7d853fe746d6e1fd5d061b7a8df842358.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: application/javascript
content-length: 107941
last-modified: Thu, 24 Jul 2025 05:27:05 GMT
vary: Accept-Encoding
etag: "6881c429-1a5a5"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/images/mobile/button-loader-green.gif?v=b175f7d362d2b4af

66.203.124.37

200 OK

8.8 kB

URL

eu.static.mega.co.nz/4/images/mobile/button-loader-green.gif?v=b175f7d362d2b4af

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeGIF image data, version 89a, 32 x 32

First Seen2023-05-04

Last Seen2025-08-02

Times Seen1145

Size8.8 kB (8787 bytes)

MD53f788625bbc4f87885b982ed70876dcb

SHA1d4155b22d2e63b149b42e238ab5c2788199a2f99

SHA256741f05bca4428e5880a44222f68a2f50172860f43b09abb57e3dc12d3ce5766d

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/images/mobile/button-loader-green.gif?v=b175f7d362d2b4af HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/gif
content-length: 8787
last-modified: Thu, 24 Jul 2025 03:54:00 GMT
etag: "6881ae58-2253"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/sprites-fm-mime-90-uni.6e9449b56f53a44d.svg#icon-generic-90

66.203.124.37

200 OK

53 kB

URL

eu.static.mega.co.nz/4/imagery/sprites-fm-mime-90-uni.6e9449b56f53a44d.svg#icon-generic-90

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2025-03-14

Last Seen2025-08-02

Times Seen116

Size53 kB (52828 bytes)

MD53d9663a1820b944c45f0961db2e6372e

SHA1c6b8b98a95e5ba0f94dad23b6d9f4b0d4e7ce31f

SHA25675cda10b8cf9d7c8eb983dd5ce640f2fcd79fe517ed9304023791a0e207abf35

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/sprites-fm-mime-90-uni.6e9449b56f53a44d.svg HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/svg+xml
content-length: 11646
last-modified: Thu, 24 Jul 2025 05:27:04 GMT
vary: Accept-Encoding
etag: "6881c428-2d7e"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET mega.nz/secureboot.js?r=1753329205

31.216.145.5

200 OK

191 kB

URL

mega.nz/secureboot.js?r=1753329205

IP / ASN

31.216.145.5

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (24222)

First Seen2025-07-24

Last Seen2025-07-31

Times Seen21

Size191 kB (191377 bytes)

MD50213a120f24e45bb51d8898e8e8b040f

SHA1696df9dbc343ac9dde34745f8110e8d69082af11

SHA256632058ecdb810e6c239a5ca73189acf796deb30c595558763ad7ccebbbd42dd0

Certificate Info

IssuerLet's Encrypt

Subjectmega.nz

Fingerprint38:60:8A:BB:CC:01:11:D1:C2:45:14:01:44:2C:67:AF:11:6F:A1:74

ValidityFri, 20 Jun 2025 21:02:56 GMT - Thu, 18 Sep 2025 21:02:55 GMT

HTTP Headers

GET /secureboot.js?r=1753329205 HTTP/1.1
Host: mega.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/file/omZUzToC
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 55775
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: MEGA-Chrome-Antileak
Access-Control-Max-Age: 86400
Content-Encoding: gzip

GET mega.nz/favicon.ico?v=3

31.216.145.5

200 OK

6.5 kB

URL

mega.nz/favicon.ico?v=3

IP / ASN

31.216.145.5

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeMS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel

First Seen2023-05-12

Last Seen2025-08-02

Times Seen1176

Size6.5 kB (6518 bytes)

MD572f13fa5f987ea923a68a818d38fb540

SHA1f014620d35787fcfdef193c20bb383f5655b9e1e

SHA25637127c1a29c164cdaa75ec72ae685094c2468fe0577f743cb1f307d23dd35ec1

Certificate Info

IssuerLet's Encrypt

Subjectmega.nz

Fingerprint38:60:8A:BB:CC:01:11:D1:C2:45:14:01:44:2C:67:AF:11:6F:A1:74

ValidityFri, 20 Jun 2025 21:02:56 GMT - Thu, 18 Sep 2025 21:02:55 GMT

HTTP Headers

GET /favicon.ico?v=3 HTTP/1.1
Host: mega.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/file/omZUzToC
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/x-icon
Content-Length: 1029
Cache-Control: max-age=8640000
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: MEGA-Chrome-Antileak
Access-Control-Max-Age: 86400
Content-Encoding: gzip

GET eu.static.mega.co.nz/4/js/BDL-3_7a2fec60a340c6a20c0fa3628068a1172040c21efc27386ed781cdef08c1a9ee.js

66.203.124.37

200 OK

630 kB

URL

eu.static.mega.co.nz/4/js/BDL-3_7a2fec60a340c6a20c0fa3628068a1172040c21efc27386ed781cdef08c1a9ee.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-07-31

Times Seen13

Size630 kB (630356 bytes)

MD5bbace4f8c142a40bf49360e989e5fd0c

SHA1ab19ce434459ef194bcc04bc5902749efc3616bd

SHA2567a2fec60a340c6a20c0fa3628068a1172040c21efc27386ed781cdef08c1a9ee

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-3_7a2fec60a340c6a20c0fa3628068a1172040c21efc27386ed781cdef08c1a9ee.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:32 GMT
content-type: application/javascript
content-length: 140881
last-modified: Thu, 24 Jul 2025 05:27:06 GMT
vary: Accept-Encoding
etag: "6881c42a-22651"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/js/BDL-10_5f4bb256256fed9d1a8c0f6e562a6e12ff00cba1b67e4fb040766fe89a5839de.js

66.203.124.37

200 OK

494 kB

URL

eu.static.mega.co.nz/4/js/BDL-10_5f4bb256256fed9d1a8c0f6e562a6e12ff00cba1b67e4fb040766fe89a5839de.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-07-31

Times Seen13

Size494 kB (493658 bytes)

MD5397532b3fa3d86c969054f9ad515636d

SHA1de4d24b51456f46f80d79a46944396376e0beb5e

SHA2565f4bb256256fed9d1a8c0f6e562a6e12ff00cba1b67e4fb040766fe89a5839de

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-10_5f4bb256256fed9d1a8c0f6e562a6e12ff00cba1b67e4fb040766fe89a5839de.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: application/javascript
content-length: 93073
last-modified: Thu, 24 Jul 2025 05:27:08 GMT
vary: Accept-Encoding
etag: "6881c42c-16b91"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/html/js/download_e647c220d57f531783f0f7d243372cd99ae36d159961eb323beee99edab51ea5.js

66.203.124.37

200 OK

40 kB

URL

eu.static.mega.co.nz/4/html/js/download_e647c220d57f531783f0f7d243372cd99ae36d159961eb323beee99edab51ea5.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-08-02

Times Seen15

Size40 kB (40130 bytes)

MD5b7ae83a6177c80addededaf551a7e8ea

SHA127cf51e8cb9047f348cfecf21bac380e0a56a0f2

SHA256e647c220d57f531783f0f7d243372cd99ae36d159961eb323beee99edab51ea5

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/html/js/download_e647c220d57f531783f0f7d243372cd99ae36d159961eb323beee99edab51ea5.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:34 GMT
content-type: application/javascript
content-length: 8724
last-modified: Thu, 24 Jul 2025 05:27:08 GMT
vary: Accept-Encoding
etag: "6881c42c-2214"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-instagram

66.203.124.37

200 OK

306 kB

URL

eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-instagram

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2025-07-02

Last Seen2025-08-02

Times Seen69

Size306 kB (305891 bytes)

MD57c56b153d7a6ca6dc20032b9a1b90a12

SHA11edf6810879152f68e9880e6c0c50a01c07303ba

SHA256153c1f00aa8cd19114ddb00ba827f6bb9eef156ecf09f4b4f1d73d51547da064

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/svg+xml
content-length: 85495
last-modified: Thu, 24 Jul 2025 05:27:04 GMT
vary: Accept-Encoding
etag: "6881c428-14df7"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

31.216.145.5

200 OK

2.1 kB

URL

mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

IP / ASN

31.216.145.5

#203055 Datacenter Luxembourg S.A.

Requested byN/A

Resource Info

File typeHTML document, ASCII text

First Seen2025-07-24

Last Seen2025-07-24

Times Seen1

Size2.1 kB (2059 bytes)

MD501664311a1274144e48615ad14fc12f8

SHA15dfcb3a0e5d85a2cfc55fc59d9bf02778fcc9978

SHA256ab4c0b1012fa30491aa730518bff9eef69ffe4c8c9056af050449c70eb722c1b

Certificate Info

IssuerLet's Encrypt

Subjectmega.nz

Fingerprint38:60:8A:BB:CC:01:11:D1:C2:45:14:01:44:2C:67:AF:11:6F:A1:74

ValidityFri, 20 Jun 2025 21:02:56 GMT - Thu, 18 Sep 2025 21:02:55 GMT

HTTP Headers

GET /file/omZUzToC HTTP/1.1
Host: mega.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://api.brainbotfilebeatsave.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/html
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: MEGA-Chrome-Antileak
Access-Control-Max-Age: 86400
Content-Encoding: gzip
Content-Length: 832
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: DENY
X-Robots-Tag: noindex
Set-Cookie: geoip=NO; Secure
Content-Security-Policy: default-src 'self' data: blob: *.mega.co.nz *.mega.nz *.mega.io http://*.mega.co.nz http://*.mega.nz http://*.mega.io wss://*.karere.mega.nz wss://*.sfu.mega.co.nz *.karere.mega.nz:1380 http://127.0.0.1:6341 localhost.megasyncloopback.mega.nz:6342; script-src 'self' *.mega.co.nz *.mega.nz *.mega.io data: blob:; style-src 'self' 'unsafe-inline' *.mega.co.nz *.mega.nz *.mega.io data: blob:; frame-src 'self' *.megapay.nz ad.mega.nz mega: *.megaad.nz https://mega.nz/ https://mega.io/; img-src 'self' *.mega.co.nz *.mega.nz *.mega.io data: blob: mega.nz
Connection: Keep-Alive

GET eu.static.mega.co.nz/4/css/BDL-5_23dd0dc2cc3b8903bd6f3692891b613eaed9ff10b175fe4422ec4d5df9fd5ca6.css

66.203.124.37

200 OK

323 kB

URL

eu.static.mega.co.nz/4/css/BDL-5_23dd0dc2cc3b8903bd6f3692891b613eaed9ff10b175fe4422ec4d5df9fd5ca6.css

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeASCII text, with very long lines (769)

First Seen2025-07-24

Last Seen2025-07-30

Times Seen6

Size323 kB (323155 bytes)

MD5d94c5b8a62d7788691649978eb0ebea7

SHA106e756ceea5e67eedb930156cdcfe49bdf1801f1

SHA25623dd0dc2cc3b8903bd6f3692891b613eaed9ff10b175fe4422ec4d5df9fd5ca6

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/css/BDL-5_23dd0dc2cc3b8903bd6f3692891b613eaed9ff10b175fe4422ec4d5df9fd5ca6.css HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: text/css
content-length: 48565
last-modified: Thu, 24 Jul 2025 05:27:09 GMT
vary: Accept-Encoding
etag: "6881c42d-bdb5"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/js/BDL-14_8589d4bc1040a01fed02c0893eda882c5e6b59df68bcf202a5fbc76453d686c5.js

66.203.124.37

200 OK

603 kB

URL

eu.static.mega.co.nz/4/js/BDL-14_8589d4bc1040a01fed02c0893eda882c5e6b59df68bcf202a5fbc76453d686c5.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-07-31

Times Seen13

Size603 kB (603196 bytes)

MD55723db0525a539d582d0e4975f032d26

SHA145b4ccef6f17aa8b97a308827689e1305fa7bc0a

SHA2568589d4bc1040a01fed02c0893eda882c5e6b59df68bcf202a5fbc76453d686c5

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-14_8589d4bc1040a01fed02c0893eda882c5e6b59df68bcf202a5fbc76453d686c5.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: application/javascript
content-length: 138267
last-modified: Thu, 24 Jul 2025 05:27:06 GMT
vary: Accept-Encoding
etag: "6881c42a-21c1b"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/js/BDL-15_2f5f6bb1baa9e7f70061d83bee609ffe07376ff50dac567578f135dfd9331812.js

66.203.124.37

200 OK

258 kB

URL

eu.static.mega.co.nz/4/js/BDL-15_2f5f6bb1baa9e7f70061d83bee609ffe07376ff50dac567578f135dfd9331812.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-08-02

Times Seen23

Size258 kB (258025 bytes)

MD5492c6a9f2060b991aef3dbfafbe62297

SHA13815da2cf1f6a1c6238e7a8712acf228c9528833

SHA2562f5f6bb1baa9e7f70061d83bee609ffe07376ff50dac567578f135dfd9331812

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-15_2f5f6bb1baa9e7f70061d83bee609ffe07376ff50dac567578f135dfd9331812.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: application/javascript
content-length: 54161
last-modified: Thu, 24 Jul 2025 05:27:08 GMT
vary: Accept-Encoding
etag: "6881c42c-d391"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/js/vendor/asmcrypto_9c90f27443fbdb85519985333a8b00c3cff0e10a2753955f41890342d64362f7.js

66.203.124.37

200 OK

443 kB

URL

eu.static.mega.co.nz/4/js/vendor/asmcrypto_9c90f27443fbdb85519985333a8b00c3cff0e10a2753955f41890342d64362f7.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2023-04-07

Last Seen2025-08-02

Times Seen1240

Size443 kB (443062 bytes)

MD5057852173e958810f1de0e8adbc9d462

SHA1bd05e51244966615a9dc2b0119f7e8cfa64f22b5

SHA2569c90f27443fbdb85519985333a8b00c3cff0e10a2753955f41890342d64362f7

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/vendor/asmcrypto_9c90f27443fbdb85519985333a8b00c3cff0e10a2753955f41890342d64362f7.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: application/javascript
content-length: 49684
last-modified: Thu, 24 Jul 2025 05:27:08 GMT
vary: Accept-Encoding
etag: "6881c42c-c214"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET mega.nz/loading-sprite_light.png

31.216.145.5

200 OK

2.9 kB

URL

mega.nz/loading-sprite_light.png

IP / ASN

31.216.145.5

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typePNG image data, 225 x 200, 8-bit colormap, non-interlaced

First Seen2024-12-20

Last Seen2025-08-02

Times Seen414

Size2.9 kB (2883 bytes)

MD59921934f1bf864072da77c61020377d7

SHA16d17fe18447d4150fa3df4875a19e90db20c67bb

SHA25673e10e327fb13409cf18780c1356edf4f86350643db0d098e1f476330ce7fcfe

Certificate Info

IssuerLet's Encrypt

Subjectmega.nz

Fingerprint38:60:8A:BB:CC:01:11:D1:C2:45:14:01:44:2C:67:AF:11:6F:A1:74

ValidityFri, 20 Jun 2025 21:02:56 GMT - Thu, 18 Sep 2025 21:02:55 GMT

HTTP Headers

GET /loading-sprite_light.png HTTP/1.1
Host: mega.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/file/omZUzToC
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2883
Cache-Control: max-age=8640000
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: MEGA-Chrome-Antileak
Access-Control-Max-Age: 86400

GET eu.static.mega.co.nz/4/css/BDL-4_b93aefc628aaa72656cf1b32b15c43feac608762703ec20d8c999ac301b8325d.css

66.203.124.37

200 OK

705 kB

URL

eu.static.mega.co.nz/4/css/BDL-4_b93aefc628aaa72656cf1b32b15c43feac608762703ec20d8c999ac301b8325d.css

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeASCII text, with very long lines (728)

First Seen2025-07-24

Last Seen2025-07-30

Times Seen6

Size705 kB (704576 bytes)

MD5219b34021c80351452d241adb7fb1ff1

SHA1e25ab395da895e5a1963d53d711c6d580c3167cd

SHA256b93aefc628aaa72656cf1b32b15c43feac608762703ec20d8c999ac301b8325d

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/css/BDL-4_b93aefc628aaa72656cf1b32b15c43feac608762703ec20d8c999ac301b8325d.css HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: text/css
content-length: 113969
last-modified: Thu, 24 Jul 2025 05:27:09 GMT
vary: Accept-Encoding
etag: "6881c42d-1bd31"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca

104.21.112.1

200 OK

9.7 kB

URL

api.brainbotfilebeatsave.com/?rt=24ac12da4457cbe57ffa3ae3dffcc2ca

IP / ASN

104.21.112.1

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeHTML document, ASCII text, with very long lines (3583)

First Seen2025-07-03

Last Seen2025-08-01

Times Seen20

Size9.7 kB (9666 bytes)

MD5cce39b80ebf8fed0648bd81b28e02e11

SHA1e54f22cb77bf186c3b58116db2fc6df7aa378000

SHA25655ce90e0c9f1e894e1e3b81fccfc8cb74db54b2370877c76e1c10676d2263f2a

Certificate Info

IssuerCLOUDFLARE, INC.

Subjectbrainbotfilebeatsave.com

FingerprintFA:1F:CB:30:BC:CF:53:4D:6D:DB:E8:92:E8:D6:12:94:F7:46:57:E8

ValiditySat, 07 Jun 2025 14:50:27 GMT - Fri, 05 Sep 2025 14:57:52 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?rt=24ac12da4457cbe57ffa3ae3dffcc2ca HTTP/1.1
Host: api.brainbotfilebeatsave.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://brainbotfilebeatsave.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 24 Jul 2025 07:03:29 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AZX7Xp805zlQusYwfs1Y4e4oQPDHxHuZtfKxj6pnY5dD1a75%2FiEvYuvDtwkZ590Yc67DNSyPduSmenkmdlhGfPowFclVOs9x4r7xbDcRLGWHRnwQk6pt%2FkZ22ppttDmXnsBQvWulOljWMZODnHwm"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
cache-control: no-store
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 96418ed7dabe569d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4558&min_rtt=1044&rtt_var=3911&sent=65&recv=78&lost=0&retrans=0&sent_bytes=8175&recv_bytes=4925&delivery_rate=426283&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=18356&unsent_bytes=0&cid=f9e34ae44afb22b0&ts=542&inflight_dur=11&x=40"

GET eu.static.mega.co.nz/4/js/BDL-1_1aa61593c58fa97150e675c02cf81b5798a968a6fcd6cb48d4cfd956420a00ca.js

66.203.124.37

200 OK

410 kB

URL

eu.static.mega.co.nz/4/js/BDL-1_1aa61593c58fa97150e675c02cf81b5798a968a6fcd6cb48d4cfd956420a00ca.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-04-24

Last Seen2025-08-02

Times Seen175

Size410 kB (409821 bytes)

MD5823c4fea1fb3f47f129a5f9dfcfa7573

SHA156fc4834471ef2cbfa67be59c6079e30db072fd0

SHA2561aa61593c58fa97150e675c02cf81b5798a968a6fcd6cb48d4cfd956420a00ca

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-1_1aa61593c58fa97150e675c02cf81b5798a968a6fcd6cb48d4cfd956420a00ca.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:31 GMT
content-type: application/javascript
content-length: 115718
last-modified: Thu, 24 Jul 2025 05:27:06 GMT
vary: Accept-Encoding
etag: "6881c42a-1c406"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/js/BDL-13_487a8ae69d6b7d64c6740db878da93774c6874e270f1e17b5bdaf6cc122f6b5f.js

66.203.124.37

200 OK

503 kB

URL

eu.static.mega.co.nz/4/js/BDL-13_487a8ae69d6b7d64c6740db878da93774c6874e270f1e17b5bdaf6cc122f6b5f.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2025-07-24

Last Seen2025-07-30

Times Seen6

Size503 kB (502570 bytes)

MD529b3b538431780e201c87c4937b43b72

SHA1418a1343e4d47558cf5805fcbc873c6c0887b285

SHA256487a8ae69d6b7d64c6740db878da93774c6874e270f1e17b5bdaf6cc122f6b5f

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/BDL-13_487a8ae69d6b7d64c6740db878da93774c6874e270f1e17b5bdaf6cc122f6b5f.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: application/javascript
content-length: 91933
last-modified: Thu, 24 Jul 2025 05:27:06 GMT
vary: Accept-Encoding
etag: "6881c42a-1671d"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-facebook

66.203.124.37

200 OK

306 kB

URL

eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-facebook

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2025-07-02

Last Seen2025-08-02

Times Seen69

Size306 kB (305891 bytes)

MD57c56b153d7a6ca6dc20032b9a1b90a12

SHA11edf6810879152f68e9880e6c0c50a01c07303ba

SHA256153c1f00aa8cd19114ddb00ba827f6bb9eef156ecf09f4b4f1d73d51547da064

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/svg+xml
content-length: 85495
last-modified: Thu, 24 Jul 2025 05:27:04 GMT
vary: Accept-Encoding
etag: "6881c428-14df7"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-linkedin

66.203.124.37

200 OK

306 kB

URL

eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-linkedin

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2025-07-02

Last Seen2025-08-02

Times Seen69

Size306 kB (305891 bytes)

MD57c56b153d7a6ca6dc20032b9a1b90a12

SHA11edf6810879152f68e9880e6c0c50a01c07303ba

SHA256153c1f00aa8cd19114ddb00ba827f6bb9eef156ecf09f4b4f1d73d51547da064

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/svg+xml
content-length: 85495
last-modified: Thu, 24 Jul 2025 05:27:04 GMT
vary: Accept-Encoding
etag: "6881c428-14df7"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-youtube

66.203.124.37

200 OK

306 kB

URL

eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-youtube

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2025-07-02

Last Seen2025-08-02

Times Seen69

Size306 kB (305891 bytes)

MD57c56b153d7a6ca6dc20032b9a1b90a12

SHA11edf6810879152f68e9880e6c0c50a01c07303ba

SHA256153c1f00aa8cd19114ddb00ba827f6bb9eef156ecf09f4b4f1d73d51547da064

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/svg+xml
content-length: 85495
last-modified: Thu, 24 Jul 2025 05:27:04 GMT
vary: Accept-Encoding
etag: "6881c428-14df7"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-error

66.203.124.37

200 OK

306 kB

URL

eu.static.mega.co.nz/4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg#icon-error

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeSVG Scalable Vector Graphics image

First Seen2025-07-02

Last Seen2025-08-02

Times Seen69

Size306 kB (305891 bytes)

MD57c56b153d7a6ca6dc20032b9a1b90a12

SHA11edf6810879152f68e9880e6c0c50a01c07303ba

SHA256153c1f00aa8cd19114ddb00ba827f6bb9eef156ecf09f4b4f1d73d51547da064

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/sprites-fm-uni-uni.489f43a16f06c995.svg HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/svg+xml
content-length: 85495
last-modified: Thu, 24 Jul 2025 05:27:04 GMT
vary: Accept-Encoding
etag: "6881c428-14df7"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

POST g.api.mega.co.nz/cs?id=55741588&v=3&lang=en&domain=meganz

66.203.125.16

200 OK

318 B

URL

g.api.mega.co.nz/cs?id=55741588&v=3&lang=en&domain=meganz

IP / ASN

66.203.125.16

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJSON text data

First Seen2025-07-24

Last Seen2025-08-02

Times Seen15

Size318 B (318 bytes)

MD521aa062943b522f6851a50d9c3fa4cbc

SHA143638fbc1e6011144c1a62fc83138aab7bc92b3b

SHA256cf5f0cd2179aa0c5b30f4d414fa18ba06fa8c09d2f70ac991e2f54370e52dc12

Certificate Info

IssuerSectigo Limited

Subject*.api.mega.co.nz

FingerprintF1:92:87:B0:48:35:8B:0C:87:B6:40:CD:57:89:6E:C8:6B:7B:5B:5D

ValidityTue, 07 Jan 2025 00:00:00 GMT - Fri, 06 Feb 2026 23:59:59 GMT

HTTP Headers

POST /cs?id=55741588&v=3&lang=en&domain=meganz HTTP/1.1
Host: g.api.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Content-Type: text/plain;charset=UTF-8
Content-Length: 42
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/json
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type, X-Hashcash, MEGA-Chrome-Antileak
Access-Control-Expose-Headers: Original-Content-Length, X-Hashcash
Access-Control-Max-Age: 86400
Cache-Control: no-store
Original-Content-Length: 318
Content-Length: 318
Connection: keep-alive

GET eu.static.mega.co.nz/4/lang/en_fa7b16fec19eca965781886e97c4cdf62949d79543c2247f7f50c3192be382cd.json

66.203.124.37

200 OK

409 kB

URL

eu.static.mega.co.nz/4/lang/en_fa7b16fec19eca965781886e97c4cdf62949d79543c2247f7f50c3192be382cd.json

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJSON text data

First Seen2025-07-24

Last Seen2025-07-31

Times Seen13

Size409 kB (409382 bytes)

MD5c69aa2bb98066541dfa9999d1d02a03f

SHA15448a009151f9cb33d38654a56c84ff0f420b2a7

SHA256fa7b16fec19eca965781886e97c4cdf62949d79543c2247f7f50c3192be382cd

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/lang/en_fa7b16fec19eca965781886e97c4cdf62949d79543c2247f7f50c3192be382cd.json HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:31 GMT
content-type: application/json
content-length: 105076
last-modified: Thu, 24 Jul 2025 05:27:01 GMT
vary: Accept-Encoding
etag: "6881c425-19a74"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/js/vendor/scheduler-polyfill_66da9107c97037dacd222b1f39336ce288eb8216b37b7120e81d62ee5dccf82c.js

66.203.124.37

200 OK

34 kB

URL

eu.static.mega.co.nz/4/js/vendor/scheduler-polyfill_66da9107c97037dacd222b1f39336ce288eb8216b37b7120e81d62ee5dccf82c.js

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typeJavaScript source, ASCII text

First Seen2024-12-07

Last Seen2025-08-02

Times Seen784

Size34 kB (33736 bytes)

MD5a84088002ad6ca024b9e0dd76839dfc3

SHA1757199046eb295aefcfcd40a3e9b6469dfa0a0b1

SHA25666da9107c97037dacd222b1f39336ce288eb8216b37b7120e81d62ee5dccf82c

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/js/vendor/scheduler-polyfill_66da9107c97037dacd222b1f39336ce288eb8216b37b7120e81d62ee5dccf82c.js HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
Origin: https://mega.nz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:33 GMT
content-type: application/javascript
content-length: 7946
last-modified: Thu, 24 Jul 2025 05:27:07 GMT
vary: Accept-Encoding
etag: "6881c42b-1f0a"
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/imagery/mega-icons-3d-icon-list-3d.1cbacc9ad7207808.png

66.203.124.37

200 OK

2.2 kB

URL

eu.static.mega.co.nz/4/imagery/mega-icons-3d-icon-list-3d.1cbacc9ad7207808.png

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typePNG image data, 64 x 64, 8-bit colormap, non-interlaced

First Seen2024-10-27

Last Seen2025-08-02

Times Seen769

Size2.2 kB (2214 bytes)

MD53ccd2d9c7d0c2ed39bb9aee5697dae55

SHA1f7e8a89bd2b7a3f22dc8b3870ee2510e1452c9b7

SHA2567d4baf623dbd6fccb2943e8b904c7a9339bdbac35bb4ee9f55c321fe7119ea89

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/imagery/mega-icons-3d-icon-list-3d.1cbacc9ad7207808.png HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mega.nz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/png
content-length: 2214
last-modified: Thu, 24 Jul 2025 03:54:00 GMT
etag: "6881ae58-8a6"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2

GET eu.static.mega.co.nz/4/images/mega/download-dialog.png?v=cf6daa0027e27782

66.203.124.37

200 OK

70 kB

URL

eu.static.mega.co.nz/4/images/mega/download-dialog.png?v=cf6daa0027e27782

IP / ASN

66.203.124.37

#203055 Datacenter Luxembourg S.A.

Requested byhttps://mega.nz/file/omZUzToC#t71QTVSpgFCxRFrU20hU2GsE0pL9xai1Ijf5A0IvwtA

Resource Info

File typePNG image data, 853 x 1363, 8-bit colormap, non-interlaced

First Seen2023-05-12

Last Seen2025-08-02

Times Seen725

Size70 kB (70369 bytes)

MD5d74c0efac1a9c59152b0325932d399f1

SHA1a472eadb5b431a4ef40e78ed79eaed9bb8fc8135

SHA256e8bedfbc203b2d09457d44a4ddfaadfb770d637e332f41487438fa9a7f5352f5

Certificate Info

IssuerSectigo Limited

Subject*.static.mega.co.nz

FingerprintF4:82:33:22:88:B2:89:93:88:56:36:38:89:36:38:24:EF:23:EF:1A

ValidityTue, 07 Jan 2025 00:00:00 GMT - Sat, 07 Feb 2026 23:59:59 GMT

HTTP Headers

GET /4/images/mega/download-dialog.png?v=cf6daa0027e27782 HTTP/1.1
Host: eu.static.mega.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 24 Jul 2025 07:03:37 GMT
content-type: image/png
content-length: 70369
last-modified: Thu, 24 Jul 2025 03:54:00 GMT
etag: "6881ae58-112e1"
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
accept-ranges: bytes
X-Firefox-Spdy: h2