Network Analysis

GET /raw/VJWK0vZ5 HTTP/1.1 Host: pastebin.com Connection: Keep-Alive

HTTP/1.1 200 OK Date: Sun, 12 Sep 2021 06:03:47 GMT Content-Type: text/plain; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive x-frame-options: DENY x-content-type-options: nosniff x-xss-protection: 1;mode=block cache-control: public, max-age=1801 CF-Cache-Status: MISS Last-Modified: Sun, 12 Sep 2021 06:03:47 GMT Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" Server: cloudflare CF-RAY: 68d6ef3f0f130a9e-KIX

GET /1Wa9p7 HTTP/1.1 Host: iplogger.org Connection: Keep-Alive

HTTP/1.1 200 OK Server: nginx Date: Sun, 12 Sep 2021 06:03:48 GMT Content-Type: image/png Transfer-Encoding: chunked Connection: keep-alive Set-Cookie: PHPSESSID=lie2o0s3sng0b315q6e3sdg1t5; path=/; HttpOnly Pragma: no-cache Set-Cookie: clhf03028ja=175.208.134.150; expires=Wed, 18-Jul-2029 05:49:51 GMT; Max-Age=247621563; path=/ Set-Cookie: timezone=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/ Set-Cookie: timezone=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/ Cache-Control: no-cache Expires: Thu, 01 Jan 1970 00:00:01 GMT Answers: whoami: 2d939b5aee78649ba5dcf483ea0aaa5e19e86948b4778e339f04998c89927566 Strict-Transport-Security: max-age=31536000; preload X-Frame-Options: DENY

GET /raw/VJWK0vZ5 HTTP/1.1 Host: pastebin.com Connection: Keep-Alive

HTTP/1.1 301 Moved Permanently Date: Sun, 12 Sep 2021 06:03:46 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Sun, 12 Sep 2021 07:03:46 GMT Location: https://pastebin.com/raw/VJWK0vZ5 Server: cloudflare CF-RAY: 68d6ef3d5bc2fbd4-KIX

GET /CurrencyCalculatorInstaller.exe HTTP/1.1 Host: cryptorelated.net Connection: Keep-Alive

HTTP/1.1 301 Moved Permanently Server: nginx Date: Sun, 12 Sep 2021 06:03:49 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Location: https://cryptorelated.net:443/CurrencyCalculatorInstaller.exe