Report - grafursaft.com/

Report Overview

Visited public
2024-12-22 03:35:29
Tags
Submit Tags
URL
grafursaft.com/
Finishing URL
grafursaft.com/
IP / ASN
104.18.2.4
#13335 CLOUDFLARENET
Title
grafursaft.com/

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
grafursaft.com	unknown	2024-11-20	2024-12-10	2024-12-10	11 kB	1.2 MB	104.18.2.4

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed
2024-12-22	medium	grafursaft.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (14)

	URL	From	Size	First Seen	Last Seen
	grafursaft.com/_next/static/chunks/1c02c3e681ea9f6d-1734618798018-ebf163de3da5e125.js	ScriptElement	27 kB	2024-12-12	2025-06-29
Pretty URL grafursaft.com/_next/static/chunks/1c02c3e681ea9f6d-1734618798018-ebf163de3da5e125.js IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 15:49 Last Seen2025-06-29 23:35 Times Seen3910 Hash 46319da25b781d320119bb919f754f17 f469c209ac6ece789afc95873888de04b0268eea 99199d4c9b8e1653af1ea901b3f856fe9537a6ff869abad68ca5c5f8d253eda5 Loading...

	grafursaft.com/_next/static/chunks/13ae2073ac3b9a3f-1734618798018-a3829fcd6a3d9125.js	ScriptElement	44 kB	2024-12-19	2024-12-23
Pretty URL grafursaft.com/_next/static/chunks/13ae2073ac3b9a3f-1734618798018-a3829fcd6a3d9125.js IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-19 15:06 Last Seen2024-12-23 09:29 Times Seen382 Hash f75a0439aae5b5b5b35c43b067c79e78 6f4c5009fa680b09617d1fa9071f1a6cd694c215 ce0acd791bfb2a102ae82c90c8001b00f8a895721daedb4412d0900cce75b387 Loading...

	grafursaft.com/_next/static/chunks/3cacc58ea516fe6f-1734618798018.4d666b3ce7dcd66f.js	ScriptElement	30 kB	2024-12-12	2025-06-29
Pretty URL grafursaft.com/_next/static/chunks/3cacc58ea516fe6f-1734618798018.4d666b3ce7dcd66f.js IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 15:49 Last Seen2025-06-29 23:35 Times Seen3892 Hash 0e650c6fbdbaea01c64c59f71ecbe089 75d3aef97713ed867eb35e87cb91d4a6ad74ac3b 08800a958ef86e09d5001801f2f8645ae0a14002a8610f38a883b747e73cb544 Loading...

	grafursaft.com/_next/static/chunks/0c51ac0c16ed4101-1734618798018-d2cdc237bddcf0bb.js	ScriptElement	40 kB	2024-12-13	2025-01-08
Pretty URL grafursaft.com/_next/static/chunks/0c51ac0c16ed4101-1734618798018-d2cdc237bddcf0bb.js IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-13 20:11 Last Seen2025-01-08 10:32 Times Seen1990 Hash 15275776e991d737af83a805acc7a77f e12c0e312dedfc338f772da39d8469c3e2ba38de f6023967f6227688ad763ee9e3940fe59f315e125766dde899e1f41e96c9214b Loading...

	grafursaft.com/	ScriptElement	57 B	2024-11-08	2025-02-06
Pretty URL grafursaft.com/ IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-11-08 15:40 Last Seen2025-02-06 06:35 Times Seen4039 Hash 5f20dadfa6c65e87a6f3ba9a64111a9f ce907e2c96765332a6f202c630d8f0579fd5b79e 8a55ffd3a9013ed6bbb3354b1c20e08c378782a734e0ec8d94db9991888a9043 Loading...

	grafursaft.com/	ScriptElement	598 B	2024-12-10	2025-06-29
Pretty URL grafursaft.com/ IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-12-10 02:17 Last Seen2025-06-29 23:35 Times Seen2796 Hash c95a8ac2479c257635f68f97f88748bb 221ae4cf837c139cfa064c59b87777c24dc87ce7 c81794d71157c278ae3ec3aa78cb021f3772fb15c8b3e162e7a4dd2df03ac7c8 Loading...

	grafursaft.com/_next/static/chunks/407da83598ea2235-1734618798018-13288ea094322088.js	ScriptElement	7.2 kB	2024-12-13	2025-01-17
Pretty URL grafursaft.com/_next/static/chunks/407da83598ea2235-1734618798018-13288ea094322088.js IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-13 20:11 Last Seen2025-01-17 09:37 Times Seen1214 Hash 51d0dbec65bf4d0b84d2e1b5ae8b25b0 9d38b123e9fa3e6405d864bea8c9456857968034 262de80d07017eeedeb525cf22cbe99c8edaefa3373b4ac66ce265fba4e6fe40 Loading...

	grafursaft.com/_next/static/gh7215qA228jo1rH6VvCy/_ssgManifest.js	ScriptElement	160 B	2024-10-31	2025-06-29
Pretty URL grafursaft.com/_next/static/gh7215qA228jo1rH6VvCy/_ssgManifest.js IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-31 10:31 Last Seen2025-06-29 23:35 Times Seen4243 Hash d7c1624b8c3c5724789430e3ee0f99cd f537b81dfb15b4b4c8c48edb112ca607563ae8e0 3064462069623e8ee6a6f553b03b85af446f6a83797c5b7df5ab4745b3e7dac1 Loading...

	grafursaft.com/	ScriptElement	1.9 kB	2024-11-08	2025-06-29
Pretty URL grafursaft.com/ IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-11-08 15:12 Last Seen2025-06-29 23:35 Times Seen4260 Hash 09851c9ecbfed34957566907c59d1855 988103bc346a45ef275aa2df5f8b0bb252996239 a4d230332f15781164cd54ef61717b7b237c054644c222e4913e89ed6823f025 Loading...

	grafursaft.com/_next/static/chunks/63f37db3d6c7736d-1734618798018-f5fdcfca190e0047.js	ScriptElement	29 kB	2024-12-19	2024-12-23
Pretty URL grafursaft.com/_next/static/chunks/63f37db3d6c7736d-1734618798018-f5fdcfca190e0047.js IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-19 15:06 Last Seen2024-12-23 09:29 Times Seen382 Hash 67fd71bd74e9e6b4f03634ca4aacc0c5 cd345fa8ce8280a7256fe85c5c094b1cfa4575d3 3c09334b4e4ee4f45a7cd7362213175cbc7d95fac3e579437a72ff9d5e32ce7e Loading...

	grafursaft.com/_next/static/chunks/4d859cac5ba89327-1734618798018-7c9f685438bac6d8.js	ScriptElement	110 kB	2024-12-12	2025-06-29
Pretty URL grafursaft.com/_next/static/chunks/4d859cac5ba89327-1734618798018-7c9f685438bac6d8.js IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-12 15:49 Last Seen2025-06-29 23:35 Times Seen3755 Hash fa92e582b2c89be329fbc8ac7170c6ac bf03008752166780239d14094615f3d6f01d52ac fadd974a6921e24c69b0f37ad3cdc0f67424923522f2102b988fe11ec99a763f Loading...

	grafursaft.com/_next/static/gh7215qA228jo1rH6VvCy/_buildManifest.js	ScriptElement	1.3 kB	2024-12-19	2024-12-23
Pretty URL grafursaft.com/_next/static/gh7215qA228jo1rH6VvCy/_buildManifest.js IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-19 15:06 Last Seen2024-12-23 09:29 Times Seen381 Hash cc7cc4fea06a63fd104d4884e69bd83d 2c8d164b96fd28761d28b1ec6df214cac8581c75 ab5c16f2f0fd44951f04db0035d0d7f7bef262de84b4b212f6323e2c4cf77f4c Loading...

	grafursaft.com/_next/static/chunks/48498f729fa5f285-1734618798018.34f643c9e2b9dfa2.js	ScriptElement	23 kB	2024-12-13	2025-01-08
Pretty URL grafursaft.com/_next/static/chunks/48498f729fa5f285-1734618798018.34f643c9e2b9dfa2.js IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-13 20:37 Last Seen2025-01-08 10:32 Times Seen1682 Hash f5cde5ef603d24e1be80490cae4622a9 bce493e208903c1d9a28ba43dc64d01c99b300b9 0e8c1ff558e9ce3972ed2e10e3a368129354b35c06b7109cfa913c27d3722480 Loading...

	grafursaft.com/_next/static/chunks/62fe3991c8fcb0c0-1734618798018.c0499fee1d42e50d.js	ScriptElement	14 kB	2024-12-18	2025-01-08
Pretty URL grafursaft.com/_next/static/chunks/62fe3991c8fcb0c0-1734618798018.c0499fee1d42e50d.js IP 104.18.2.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-18 19:08 Last Seen2025-01-08 10:32 Times Seen1643 Hash f9c473024ac69f72c908ea830ea6384e 9745e0938ac9cff95d2311de955bbd932c873931 148c6ec1e1d41ea56f169d2d7f94f23570bdd76175080c61a6cc2d847fd4650a Loading...

HTTP Transactions (26)

URL IP Response Size

GET grafursaft.com/_next/static/media/1.9532e9b8.webp

104.18.2.4

200 OK

40 kB

URL GET HTTP/3
grafursaft.com/_next/static/media/1.9532e9b8.webp
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x854, Scaling: [none]x[none], YUV color, decoders should clamp
Size
40 kB (40124 bytes)
Hash
859cdb94454c49271cc49c6c5a83f87d
245fd2c38378954297bcd69e4b31981538cdad2e
55c3175016b26ad5d4459a7f3cb88af084309d72596cfc119ea0d861eddb820c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/1.9532e9b8.webp HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: image/webp
content-length: 40124
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: "67642fe6-9cbc"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f5d0f46bb8756ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/media/landingcraft-logo-transparent.ad24303d.webp

104.18.2.4

200 OK

34 kB

URL GET HTTP/3
grafursaft.com/_next/static/media/landingcraft-logo-transparent.ad24303d.webp
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
RIFF (little-endian) data, Web/P image
Size
34 kB (34230 bytes)
Hash
babbf63c52322cdecdbc544199843178
af1d342ed0aa08123b5be701c56731b83a64ada8
0abd7448d8162c5071dfeb1f562a08f825666e6d8c8565b786df6ac0ab9e6c7f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/landingcraft-logo-transparent.ad24303d.webp HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: image/webp
content-length: 34230
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: "67642fe6-85b6"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f5d0f46bb8556ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/media/2.55778719.webp

104.18.2.4

200 OK

43 kB

URL GET HTTP/3
grafursaft.com/_next/static/media/2.55778719.webp
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x853, Scaling: [none]x[none], YUV color, decoders should clamp
Size
43 kB (43280 bytes)
Hash
fe38cafec0d6a54913511a0edb6a93f5
18308c0c8bef59c7f61aadc168e9af611c6bec79
132fb2d112ddda4c4bc7e06561d7fde1e33f6a1abd4432762456b302c060bae1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/2.55778719.webp HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: image/webp
content-length: 43280
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: "67642fe6-a910"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f5d0f46bb8a56ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/media/3.3d53d30f.webp

104.18.2.4

200 OK

60 kB

URL GET HTTP/3
grafursaft.com/_next/static/media/3.3d53d30f.webp
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1000x602, Scaling: [none]x[none], YUV color, decoders should clamp
Size
60 kB (59588 bytes)
Hash
42f9baac60a47d0d3801dce8c3b6c901
a90724c80810a2ef0cbc5976ca4b7e109d5a0c76
aed9275aaa33ba86dd0b248eaa765e5b28f0190fb85afb88dd6f4bc4b50ed1e4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/3.3d53d30f.webp HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: image/webp
content-length: 59588
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: "67642fe6-e8c4"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f5d0f46bb9556ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/media/3.e6104de9.jpg

104.18.2.4

200 OK

42 kB

URL GET HTTP/3
grafursaft.com/_next/static/media/3.e6104de9.jpg
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x520, components 3
Size
42 kB (41911 bytes)
Hash
e3abd1a7a2ad93ef9dda40fc910d476d
e259e6be22f047bd74ba89013791ae33d459eace
b6994e570fbd5567c117b8e911faab4af35f5ba3223d5be37aca8d795d0d55af

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/3.e6104de9.jpg HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: image/jpeg
content-length: 41911
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "67642fe6-a3b7"
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f5d0f47bc3a56ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/chunks/62fe3991c8fcb0c0-1734618798018.c0499fee1d42e50d.js

104.18.2.4

200 OK

62 kB

URL GET HTTP/3
grafursaft.com/_next/static/chunks/62fe3991c8fcb0c0-1734618798018.c0499fee1d42e50d.js
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JavaScript source, ASCII text, with very long lines (14526), with no line terminators
Size
62 kB (61786 bytes)
Hash
f9c473024ac69f72c908ea830ea6384e
9745e0938ac9cff95d2311de955bbd932c873931
148c6ec1e1d41ea56f169d2d7f94f23570bdd76175080c61a6cc2d847fd4650a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/62fe3991c8fcb0c0-1734618798018.c0499fee1d42e50d.js HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: W/"67642fe6-38be"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=3,i=?0
server: cloudflare
cf-ray: 8f5d0f46ab6656ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/chunks/0c51ac0c16ed4101-1734618798018-d2cdc237bddcf0bb.js

104.18.2.4

200 OK

70 kB

URL GET HTTP/3
grafursaft.com/_next/static/chunks/0c51ac0c16ed4101-1734618798018-d2cdc237bddcf0bb.js
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JavaScript source, ASCII text, with very long lines (40545), with no line terminators
Size
70 kB (70417 bytes)
Hash
15275776e991d737af83a805acc7a77f
e12c0e312dedfc338f772da39d8469c3e2ba38de
f6023967f6227688ad763ee9e3940fe59f315e125766dde899e1f41e96c9214b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/0c51ac0c16ed4101-1734618798018-d2cdc237bddcf0bb.js HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: W/"67642fe6-9e61"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=3,i=?0
server: cloudflare
cf-ray: 8f5d0f469b5e56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/media/5.ca38b995.jpg

104.18.2.4

200 OK

84 kB

URL GET HTTP/3
grafursaft.com/_next/static/media/5.ca38b995.jpg
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x709, components 3
Size
84 kB (83807 bytes)
Hash
011bb190202ada3f0fef3d442fb030a7
8ddfe89719fabd1529c57b330eb5b50ec18d1c3e
5d500c17fefd98fe1348c199fc1a29387519d26f98d9c42864d15684f8720451

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/5.ca38b995.jpg HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: image/jpeg
content-length: 83807
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "67642fe6-1475f"
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f5d0f47bc3d56ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/chunks/48498f729fa5f285-1734618798018.34f643c9e2b9dfa2.js

104.18.2.4

200 OK

50 kB

URL GET HTTP/3
grafursaft.com/_next/static/chunks/48498f729fa5f285-1734618798018.34f643c9e2b9dfa2.js
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JavaScript source, ASCII text, with very long lines (22653), with no line terminators
Size
50 kB (50539 bytes)
Hash
f5cde5ef603d24e1be80490cae4622a9
bce493e208903c1d9a28ba43dc64d01c99b300b9
0e8c1ff558e9ce3972ed2e10e3a368129354b35c06b7109cfa913c27d3722480

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/48498f729fa5f285-1734618798018.34f643c9e2b9dfa2.js HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: W/"67642fe6-587d"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=3,i=?0
server: cloudflare
cf-ray: 8f5d0f469b6356ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/chunks/63f37db3d6c7736d-1734618798018-f5fdcfca190e0047.js

104.18.2.4

200 OK

81 kB

URL GET HTTP/3
grafursaft.com/_next/static/chunks/63f37db3d6c7736d-1734618798018-f5fdcfca190e0047.js
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JavaScript source, ASCII text, with very long lines (28572), with no line terminators
Size
81 kB (80870 bytes)
Hash
67fd71bd74e9e6b4f03634ca4aacc0c5
cd345fa8ce8280a7256fe85c5c094b1cfa4575d3
3c09334b4e4ee4f45a7cd7362213175cbc7d95fac3e579437a72ff9d5e32ce7e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/63f37db3d6c7736d-1734618798018-f5fdcfca190e0047.js HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: W/"67642fe6-6f9c"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=3,i=?0
server: cloudflare
cf-ray: 8f5d0f46ab6856ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/chunks/13ae2073ac3b9a3f-1734618798018-a3829fcd6a3d9125.js

104.18.2.4

200 OK

66 kB

URL GET HTTP/3
grafursaft.com/_next/static/chunks/13ae2073ac3b9a3f-1734618798018-a3829fcd6a3d9125.js
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JavaScript source, ASCII text, with very long lines (43597), with no line terminators
Size
66 kB (66147 bytes)
Hash
f75a0439aae5b5b5b35c43b067c79e78
6f4c5009fa680b09617d1fa9071f1a6cd694c215
ce0acd791bfb2a102ae82c90c8001b00f8a895721daedb4412d0900cce75b387

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/13ae2073ac3b9a3f-1734618798018-a3829fcd6a3d9125.js HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: W/"67642fe6-aa4d"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=3,i=?0
server: cloudflare
cf-ray: 8f5d0f46ab6f56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/chunks/3cacc58ea516fe6f-1734618798018.4d666b3ce7dcd66f.js

104.18.2.4

200 OK

70 kB

URL GET HTTP/3
grafursaft.com/_next/static/chunks/3cacc58ea516fe6f-1734618798018.4d666b3ce7dcd66f.js
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JavaScript source, ASCII text, with very long lines (30035), with no line terminators
Size
70 kB (70323 bytes)
Hash
0e650c6fbdbaea01c64c59f71ecbe089
75d3aef97713ed867eb35e87cb91d4a6ad74ac3b
08800a958ef86e09d5001801f2f8645ae0a14002a8610f38a883b747e73cb544

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/3cacc58ea516fe6f-1734618798018.4d666b3ce7dcd66f.js HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: W/"67642fe6-7553"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=3,i=?0
server: cloudflare
cf-ray: 8f5d0f469b5d56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/favicon.ico

104.18.2.4

204 No Content

0 B

URL GET HTTP/3
grafursaft.com/favicon.ico
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Sun, 22 Dec 2024 03:35:03 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: MISS
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=6,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f5d0f491d1456ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/chunks/4d859cac5ba89327-1734618798018-7c9f685438bac6d8.js

104.18.2.4

200 OK

43 kB

URL GET HTTP/3
grafursaft.com/_next/static/chunks/4d859cac5ba89327-1734618798018-7c9f685438bac6d8.js
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
43 kB (42901 bytes)
Hash
fa92e582b2c89be329fbc8ac7170c6ac
bf03008752166780239d14094615f3d6f01d52ac
fadd974a6921e24c69b0f37ad3cdc0f67424923522f2102b988fe11ec99a763f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/4d859cac5ba89327-1734618798018-7c9f685438bac6d8.js HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: W/"67642fe6-1ac86"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=3,i=?0
server: cloudflare
cf-ray: 8f5d0f46ab6c56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/css/0bc0cde260d08b97.css

104.18.2.4

200 OK

1.8 kB

URL GET HTTP/3
grafursaft.com/_next/static/css/0bc0cde260d08b97.css
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
ASCII text, with very long lines (1843), with no line terminators
Size
1.8 kB (1843 bytes)
Hash
64b2b4fa42c7d558d735e2cd28ecf88a
03d6da6e55b1201b51689590520da495a9233d67
2fdb3ce9ccba8355040e5ba3dfb2283194acba81858943b5d88f70030dbb71ea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/0bc0cde260d08b97.css HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: text/css
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: W/"67642fe6-733"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=2,i=?0
server: cloudflare
cf-ray: 8f5d0f469b5c56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/media/8.486711ca.jpg

104.18.2.4

200 OK

52 kB

URL GET HTTP/3
grafursaft.com/_next/static/media/8.486711ca.jpg
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x427, components 3
Size
52 kB (52097 bytes)
Hash
2e4f7394e98f2f502d62113132472743
dcb69f6c5ce07e5ecabd9f24dd81954e5d3e6105
0b0b7ee4d4e00b146e5f5771c2af2c87df4f99ab14a9f4d0ad220cc285e0424d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/8.486711ca.jpg HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: image/jpeg
content-length: 52097
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "67642fe6-cb81"
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f5d0f47cc4556ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/media/7.88cb6238.jpg

104.18.2.4

200 OK

67 kB

URL GET HTTP/3
grafursaft.com/_next/static/media/7.88cb6238.jpg
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x534, components 3
Size
67 kB (67394 bytes)
Hash
5b4579b2974418dbe35135e0969fc86b
c28f327ac740d8ebbbca77a2a5455e74bab34a1e
001c91dbac5d1023598d4115dbfe09a047fe1c17f40192cfe04062b496fc9308

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/7.88cb6238.jpg HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: image/jpeg
content-length: 67394
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "67642fe6-10742"
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f5d0f47cc4456ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/

104.18.2.4

200 OK

41 kB

URL User Request GET HTTP/2
grafursaft.com/
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type

Size
41 kB (40591 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: text/html
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8f5d0f43afbdb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET grafursaft.com/_next/static/gh7215qA228jo1rH6VvCy/_buildManifest.js

104.18.2.4

200 OK

1.3 kB

URL GET HTTP/3
grafursaft.com/_next/static/gh7215qA228jo1rH6VvCy/_buildManifest.js
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
ASCII text, with very long lines (1319), with no line terminators
Size
1.3 kB (1253 bytes)
Hash
5b9af8019dac05af9aa6890c3ed9e29a
ded5498fbece929be6839b58f07ed0a80b2a0086
c4ad5fcafd809cf4675fd6b39973b5d8673f38fb0ca1436092479a4c78bc97e3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/gh7215qA228jo1rH6VvCy/_buildManifest.js HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: W/"67642fe6-4e5"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=3,i=?0
server: cloudflare
cf-ray: 8f5d0f46ab7656ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/media/2.55905b8b.jpg

104.18.2.4

200 OK

58 kB

URL GET HTTP/3
grafursaft.com/_next/static/media/2.55905b8b.jpg
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x360, components 3
Size
58 kB (57614 bytes)
Hash
c48a793b6a2954703d24de53109054a1
d677a3fd56745b67e01cc40a23163e4ce6e85a57
bfdd3813812a448251c42f55d23c2235f2bdcb7d9a1fd5da8cae3c0da9803f2e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/2.55905b8b.jpg HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: image/jpeg
content-length: 57614
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "67642fe6-e10e"
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f5d0f47bc3856ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/chunks/1c02c3e681ea9f6d-1734618798018-ebf163de3da5e125.js

104.18.2.4

200 OK

27 kB

URL GET HTTP/3
grafursaft.com/_next/static/chunks/1c02c3e681ea9f6d-1734618798018-ebf163de3da5e125.js
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JavaScript source, ASCII text, with very long lines (26671), with no line terminators
Size
27 kB (26671 bytes)
Hash
46319da25b781d320119bb919f754f17
f469c209ac6ece789afc95873888de04b0268eea
99199d4c9b8e1653af1ea901b3f856fe9537a6ff869abad68ca5c5f8d253eda5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/1c02c3e681ea9f6d-1734618798018-ebf163de3da5e125.js HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: W/"67642fe6-682f"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=3,i=?0
server: cloudflare
cf-ray: 8f5d0f46ab6a56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/media/1.c65aab1e.jpg

104.18.2.4

200 OK

59 kB

URL GET HTTP/3
grafursaft.com/_next/static/media/1.c65aab1e.jpg
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x534, components 3
Size
59 kB (58799 bytes)
Hash
1868bdc08970cbfe1b7699a7071c0086
5e71bc1930b39e53b000b56f5c4f0c36ae0ade99
e25be1d4074b042822a729e7c7bcc2a657f6d7bc6ef82680397e1780b0aa8a5f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/1.c65aab1e.jpg HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: image/jpeg
content-length: 58799
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "67642fe6-e5af"
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f5d0f47bc3556ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/chunks/407da83598ea2235-1734618798018-13288ea094322088.js

104.18.2.4

200 OK

7.2 kB

URL GET HTTP/3
grafursaft.com/_next/static/chunks/407da83598ea2235-1734618798018-13288ea094322088.js
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JavaScript source, ASCII text, with very long lines (7300), with no line terminators
Size
7.2 kB (7214 bytes)
Hash
a171db3ab060615a0bf5bd04f341bf39
1fe155a1d4b9fd437301059967f783fa6c5556cb
c3944a1b7b642843311379da74a3f884626d6eb69aae1e36acf5e693cb3af450

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/407da83598ea2235-1734618798018-13288ea094322088.js HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: W/"67642fe6-1c2e"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=3,i=?0
server: cloudflare
cf-ray: 8f5d0f46ab7356ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/media/6.1a09423f.jpg

104.18.2.4

200 OK

45 kB

URL GET HTTP/3
grafursaft.com/_next/static/media/6.1a09423f.jpg
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 620x412, components 3
Size
45 kB (45093 bytes)
Hash
c6a7873798ffd7d6f7e63587e04d18f9
6c12dd80834fd6fbca751c71e8355118b3dc377a
b71a06dad2db4c59e4b50ef363cd87272c5753bb37e87d596d08fca5fdf71fed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/6.1a09423f.jpg HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: image/jpeg
content-length: 45093
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "67642fe6-b025"
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f5d0f47cc3e56ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/gh7215qA228jo1rH6VvCy/_ssgManifest.js

104.18.2.4

200 OK

160 B

URL GET HTTP/3
grafursaft.com/_next/static/gh7215qA228jo1rH6VvCy/_ssgManifest.js
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
ASCII text, with no line terminators
Size
160 B (160 bytes)
Hash
ec987e535717d417e4c20c3f19741a95
36c65d6370d55851e91e9f1ff1a76751a1140fed
409d2de41a27a5c819fc065c000aa9bdcbb56a5f69595a04fb0db8da10802d2c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/gh7215qA228jo1rH6VvCy/_ssgManifest.js HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: application/javascript
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
vary: Accept-Encoding
etag: W/"67642fe6-a0"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
priority: u=3,i=?0
server: cloudflare
cf-ray: 8f5d0f46bb7d56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET grafursaft.com/_next/static/media/4.25f77040.jpg

104.18.2.4

200 OK

55 kB

URL GET HTTP/3
grafursaft.com/_next/static/media/4.25f77040.jpg
IP
104.18.2.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://grafursaft.com/
Certificate
IssuerGoogle Trust Services
Subjectgrafursaft.com
FingerprintA1:50:91:6E:78:2E:4D:8B:36:60:D9:59:7B:BF:32:FD:33:48:F2:43
ValidityWed, 20 Nov 2024 12:50:11 GMT - Tue, 18 Feb 2025 12:50:10 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x534, components 3
Size
55 kB (54765 bytes)
Hash
832d2ce48ca167c9ead9a1d9984c43cb
e40f6320817f965776468e88d35dc1081f73b50c
dd7ba516c39cf879928de1e7032a07f595989bc49e26769d3e5b9cf4cebd2192

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/4.25f77040.jpg HTTP/1.1
Host: grafursaft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 22 Dec 2024 03:35:03 GMT
content-type: image/jpeg
content-length: 54765
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
etag: "67642fe6-d5ed"
last-modified: Thu, 19 Dec 2024 14:38:30 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cf-cache-status: HIT
expires: Sun, 22 Dec 2024 04:35:03 GMT
cache-control: public, max-age=3600
accept-ranges: bytes
priority: u=4,i=?0
server: cloudflare
cf-ray: 8f5d0f47bc3c56ca-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML