Windows Analysis Report
https://delivery.attempt.failure.ebbs.co.za/public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1

Overview

General Information

Sample URL:	https://delivery.attempt.failure.ebbs.co.za/public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1
Analysis ID:	1467899
Infos:

Detection

Score:	64
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

Snort IDS alert for network traffic

HTML body contains low number of good links

Invalid T&C link found

Classification

Signatures

AV Detection

Antivirus / Scanner detection for submitted sample

Source: https://delivery.attempt.failure.ebbs.co.za/public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1	Avira URL Cloud: detection malicious, Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1	SlashNext: detection malicious, Label: Fraudulent Website type: Phishing & Social Engineering

Antivirus detection for URL or domain

Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff?eeccf4f66002c6f2ba24d3d22f2434c2	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/public/js/session-recorder.js	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/public/js/app.js	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fontsource/roboto/files/roboto-all-400-normal.woff?376ea5d93f71583052f65de4e0c6a92c	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fontsource/roboto/files/roboto-latin-400-normal.woff2?4673b4537a84c7f7a130799aa6af329b	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/favicon.ico	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/images/foo.png	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/public	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.ttf?527940b104eb2ea366c8630f3f038603	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/images/logo.png	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/images/all.png	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.ttf?be9ee23c0c6390141475d519c2c5fb8f	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb/	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/public/	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/public/css/app.css	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?1551f4f60c37af51121f106501f69b80	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.woff?2285773e6b4b172f07d9b777c81b0775	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/public/css/fonts/webfa-brands-400.woff2?d878b0a6a1144760244ff0665888404c	Avira URL Cloud: Label: malware

HTML body contains low number of good links

Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb

HTTP Parser: Number of links: 0

Invalid T&C link found

Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: Help and support
Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: Help and support
Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: Help and support
Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: Terms and conditions
Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: Terms and conditions
Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: privacy Notice
Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: Legal notice

Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb

HTTP Parser: No favicon

Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb

HTTP Parser: No <meta name="author".. found

Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb

HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49742 version: TLS 1.2

Networking

Snort IDS alert for network traffic

Source: Traffic

Snort IDS: 2014545 ET CURRENT_EVENTS TDS Sutra - page redirecting to a SutraTDS 41.185.8.221:443 -> 192.168.2.4:49750

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.126.137
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.126.137
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1 HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IndJazhWdUZOdW40T2pYN3Q0d3lwa0E9PSIsInZhbHVlIjoieXhQb1pqNE82QS9SK01RZUN1OWQ1VU9ybjdDR2R4VS9PVzRqTWt0YWczWS9wazVJTGF4bWRSU1lraVFSUWNHK2N3cDZ1K2kzTTh5eHRZcFhrUGlHRkVKVFV3aXRjc2J2R01mR0dMR09TaHJNTzZkR0x5MU9yOHN5aDhXV0R4alAiLCJtYWMiOiJjNWI1YmZjMTc1NWZkODBkYjFlZTZjYzEzNmFmNTRkNjY5MTQzODVmOTg0NDMxMmY0OGRlNzFjYWUxMjdmOTVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Im9PaXh3WEMyQmFqY2xYV05vajJvZ3c9PSIsInZhbHVlIjoiSnRuRmFPQVN5MFR2eTRjbzZNcEZmOHljZFE3OGx2ZXRTNXpwZnlWQncvWjJlUFBYMllyREYwODdwRWJRWXJsdERVWE93WFFyRG1OZHd0YkVMS29iVVNaZGU5d1FIejd2dlVVQUtsQlcrbnlHMGdmRG1jWUptTlhxRmtvOXRzZngiLCJtYWMiOiIwMzlhYTJjN2UzMWQyOGNlNTQ4NGM5YzcxNzE0MGZmM2ExYThhZjg2NDk1OWFlZDliNTA3MGNjM2U4ZDI2Y2IxIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /public/ HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IndJazhWdUZOdW40T2pYN3Q0d3lwa0E9PSIsInZhbHVlIjoieXhQb1pqNE82QS9SK01RZUN1OWQ1VU9ybjdDR2R4VS9PVzRqTWt0YWczWS9wazVJTGF4bWRSU1lraVFSUWNHK2N3cDZ1K2kzTTh5eHRZcFhrUGlHRkVKVFV3aXRjc2J2R01mR0dMR09TaHJNTzZkR0x5MU9yOHN5aDhXV0R4alAiLCJtYWMiOiJjNWI1YmZjMTc1NWZkODBkYjFlZTZjYzEzNmFmNTRkNjY5MTQzODVmOTg0NDMxMmY0OGRlNzFjYWUxMjdmOTVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Im9PaXh3WEMyQmFqY2xYV05vajJvZ3c9PSIsInZhbHVlIjoiSnRuRmFPQVN5MFR2eTRjbzZNcEZmOHljZFE3OGx2ZXRTNXpwZnlWQncvWjJlUFBYMllyREYwODdwRWJRWXJsdERVWE93WFFyRG1OZHd0YkVMS29iVVNaZGU5d1FIejd2dlVVQUtsQlcrbnlHMGdmRG1jWUptTlhxRmtvOXRzZngiLCJtYWMiOiIwMzlhYTJjN2UzMWQyOGNlNTQ4NGM5YzcxNzE0MGZmM2ExYThhZjg2NDk1OWFlZDliNTA3MGNjM2U4ZDI2Y2IxIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb/ HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://delivery.attempt.failure.ebbs.co.za/public/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkEvSmx2SkZnMndoSG1CVUpObjNwRHc9PSIsInZhbHVlIjoiaGVqdVlXTVdVYkR6SDVBNjl3bE1JSk4wZndwS1ZJbVA1VE5lcWdwMmhnQmhjR2NDZDh3MExDZnB3S2g0TFdqS0VGaXJHbEV0YU5udkFvbzZXNElPNm9kL3pUOEpLZE1wZ0x2ckcrUXNBa1g0d3BZQm54cUpxSThDNFBheGFTYmwiLCJtYWMiOiIyMTU0MTAzYWE5NGFiZWMyMjA1ZWUwYTZmZDk2OTIzZWU4MTNjMThiMGQ3ODliMzIyZjU3YWQ3YzZmY2U5NDYxIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikl0UDVEWTgvL2RmOEV0YlJGZnVvUmc9PSIsInZhbHVlIjoibHJyMG5ablNXdHd6VU1oSHlhL3FtV2pnSTd4VTlNQmhMYjRJZVdpM2lJeGV2OER1K3h1SGZWdXNSalBBV21rVUZWUjdTNGVHd2doSG9mRm1jYVVNTmx3bm9nbHI2ckJlNzR5L2xON0tyVU13MHd0WGs2blRRQ2VxWitQenk4QloiLCJtYWMiOiIyNjM2OWY5OWEyY2QxMTYwYjU4ZmQwZjAxZGNjYTNlOTBhM2Y0M2YxY2RlMTk2NzE3YTI3OTA1ODgzYmNjNDMwIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://delivery.attempt.failure.ebbs.co.za/public/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkEvSmx2SkZnMndoSG1CVUpObjNwRHc9PSIsInZhbHVlIjoiaGVqdVlXTVdVYkR6SDVBNjl3bE1JSk4wZndwS1ZJbVA1VE5lcWdwMmhnQmhjR2NDZDh3MExDZnB3S2g0TFdqS0VGaXJHbEV0YU5udkFvbzZXNElPNm9kL3pUOEpLZE1wZ0x2ckcrUXNBa1g0d3BZQm54cUpxSThDNFBheGFTYmwiLCJtYWMiOiIyMTU0MTAzYWE5NGFiZWMyMjA1ZWUwYTZmZDk2OTIzZWU4MTNjMThiMGQ3ODliMzIyZjU3YWQ3YzZmY2U5NDYxIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikl0UDVEWTgvL2RmOEV0YlJGZnVvUmc9PSIsInZhbHVlIjoibHJyMG5ablNXdHd6VU1oSHlhL3FtV2pnSTd4VTlNQmhMYjRJZVdpM2lJeGV2OER1K3h1SGZWdXNSalBBV21rVUZWUjdTNGVHd2doSG9mRm1jYVVNTmx3bm9nbHI2ckJlNzR5L2xON0tyVU13MHd0WGs2blRRQ2VxWitQenk4QloiLCJtYWMiOiIyNjM2OWY5OWEyY2QxMTYwYjU4ZmQwZjAxZGNjYTNlOTBhM2Y0M2YxY2RlMTk2NzE3YTI3OTA1ODgzYmNjNDMwIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://delivery.attempt.failure.ebbs.co.za/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/css/app.css HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /images/logo.png HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /logger-1.min.js HTTP/1.1Host: cdn.lr-in.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://delivery.attempt.failure.ebbs.co.za/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/all.png HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /images/foo.png HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /public/js/app.js HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /public/js/session-recorder.js HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /c/hotjar-2895475.js?sv=6 HTTP/1.1Host: static.hotjar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://delivery.attempt.failure.ebbs.co.za/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fontsource/roboto/files/roboto-latin-400-normal.woff2?4673b4537a84c7f7a130799aa6af329b HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?1551f4f60c37af51121f106501f69b80 HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /public/css/fonts/webfa-brands-400.woff2?d878b0a6a1144760244ff0665888404c HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /modules.e4b2dc39f985f11fb1e4.js HTTP/1.1Host: script.hotjar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://delivery.attempt.failure.ebbs.co.za/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false HTTP/1.1Host: ws-mt1.pusher.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://delivery.attempt.failure.ebbs.co.zaSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: zbgCSaqxoelVqAIOt/ac9w==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fontsource/roboto/files/roboto-all-400-normal.woff?376ea5d93f71583052f65de4e0c6a92c HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff?eeccf4f66002c6f2ba24d3d22f2434c2 HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.woff?2285773e6b4b172f07d9b777c81b0775 HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.ttf?527940b104eb2ea366c8630f3f038603 HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960; _hjSessionUser_2895475=eyJpZCI6IjIwZjFjMGU4LTlkN2UtNTY5MS1iODEyLTViNzFmZmFiMmFkMCIsImNyZWF0ZWQiOjE3MjAxMzMxMDA2NjYsImV4aXN0aW5nIjp0cnVlfQ==; _hjSession_2895475=eyJpZCI6IjA3OTk5YWI3LTRkZmQtNGRjMy04MDIyLTZmZWI4Y2M2ODY1NCIsImMiOjE3MjAxMzMxMDA2NjcsInMiOjEsInIiOjAsInNiIjowLCJzciI6MCwic2UiOjAsImZzIjoxLCJzcCI6MH0=
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.ttf?be9ee23c0c6390141475d519c2c5fb8f HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960; _hjSessionUser_2895475=eyJpZCI6IjIwZjFjMGU4LTlkN2UtNTY5MS1iODEyLTViNzFmZmFiMmFkMCIsImNyZWF0ZWQiOjE3MjAxMzMxMDA2NjYsImV4aXN0aW5nIjp0cnVlfQ==; _hjSession_2895475=eyJpZCI6IjA3OTk5YWI3LTRkZmQtNGRjMy04MDIyLTZmZWI4Y2M2ODY1NCIsImMiOjE3MjAxMzMxMDA2NjcsInMiOjEsInIiOjAsInNiIjowLCJzciI6MCwic2UiOjAsImZzIjoxLCJzcCI6MH0=
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960; _hjSessionUser_2895475=eyJpZCI6IjIwZjFjMGU4LTlkN2UtNTY5MS1iODEyLTViNzFmZmFiMmFkMCIsImNyZWF0ZWQiOjE3MjAxMzMxMDA2NjYsImV4aXN0aW5nIjp0cnVlfQ==; _hjSession_2895475=eyJpZCI6IjA3OTk5YWI3LTRkZmQtNGRjMy04MDIyLTZmZWI4Y2M2ODY1NCIsImMiOjE3MjAxMzMxMDA2NjcsInMiOjEsInIiOjAsInNiIjowLCJzciI6MCwic2UiOjAsImZzIjoxLCJzcCI6MH0=
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960; _hjSessionUser_2895475=eyJpZCI6IjIwZjFjMGU4LTlkN2UtNTY5MS1iODEyLTViNzFmZmFiMmFkMCIsImNyZWF0ZWQiOjE3MjAxMzMxMDA2NjYsImV4aXN0aW5nIjp0cnVlfQ==; _hjSession_2895475=eyJpZCI6IjA3OTk5YWI3LTRkZmQtNGRjMy04MDIyLTZmZWI4Y2M2ODY1NCIsImMiOjE3MjAxMzMxMDA2NjcsInMiOjEsInIiOjAsInNiIjowLCJzciI6MCwic2UiOjAsImZzIjoxLCJzcCI6MH0=

Source: global traffic	DNS traffic detected: DNS query: delivery.attempt.failure.ebbs.co.za
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: files.killbot.org
Source: global traffic	DNS traffic detected: DNS query: kit.fontawesome.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: ka-f.fontawesome.com
Source: global traffic	DNS traffic detected: DNS query: cdn.lr-in.com
Source: global traffic	DNS traffic detected: DNS query: static.hotjar.com
Source: global traffic	DNS traffic detected: DNS query: script.hotjar.com
Source: global traffic	DNS traffic detected: DNS query: ws-mt1.pusher.com
Source: global traffic	DNS traffic detected: DNS query: sockjs-mt1.pusher.com
Source: global traffic	DNS traffic detected: DNS query: r.lr-in.com

Source: unknown

HTTP traffic detected: POST /pusher/app/bc5ba70500b3342fb1aa/443/ir465fcn/xhr_streaming?protocol=7&client=js&version=7.0.3&t=1720133101492&n=1 HTTP/1.1Host: sockjs-mt1.pusher.comConnection: keep-aliveContent-Length: 0sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-platform: "Windows"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Content-Type: application/jsonAccept: */*Origin: https://delivery.attempt.failure.ebbs.co.zaSec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://delivery.attempt.failure.ebbs.co.za/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:44:57 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:44:57 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:44:58 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:00 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:00 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:00 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:04 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:04 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private

Source: chromecache_66.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_66.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_67.2.dr	String found in binary or memory: http://js.pusher.com
Source: chromecache_59.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
Source: chromecache_59.2.dr	String found in binary or memory: https://delivery.attempt.failure.ebbs.co.za/public/css/app.css
Source: chromecache_59.2.dr	String found in binary or memory: https://delivery.attempt.failure.ebbs.co.za/public/js/app.js
Source: chromecache_59.2.dr	String found in binary or memory: https://delivery.attempt.failure.ebbs.co.za/public/js/session-recorder.js
Source: chromecache_56.2.dr, chromecache_59.2.dr	String found in binary or memory: https://files.killbot.org/.cdn-cgi/killbot-security.js
Source: chromecache_80.2.dr, chromecache_83.2.dr, chromecache_69.2.dr, chromecache_60.2.dr, chromecache_76.2.dr, chromecache_62.2.dr, chromecache_72.2.dr, chromecache_74.2.dr, chromecache_64.2.dr	String found in binary or memory: https://fontawesome.com
Source: chromecache_80.2.dr, chromecache_83.2.dr, chromecache_69.2.dr, chromecache_60.2.dr, chromecache_76.2.dr, chromecache_62.2.dr, chromecache_72.2.dr, chromecache_74.2.dr, chromecache_64.2.dr	String found in binary or memory: https://fontawesome.com/license/free
Source: chromecache_73.2.dr, chromecache_71.2.dr, chromecache_63.2.dr, chromecache_81.2.dr, chromecache_57.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Nunito&display=swap
Source: chromecache_73.2.dr, chromecache_71.2.dr, chromecache_63.2.dr, chromecache_81.2.dr, chromecache_57.2.dr	String found in binary or memory: https://fonts.gstatic.com
Source: chromecache_60.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_67.2.dr	String found in binary or memory: https://github.com/es-shims/es5-shim
Source: chromecache_79.2.dr	String found in binary or memory: https://github.com/js-cookie/js-cookie
Source: chromecache_67.2.dr	String found in binary or memory: https://github.com/pusher/pusher-js/tree/cc491015371a4bde5743d1c87a0fbac0feb53195#encrypted-channel-
Source: chromecache_60.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/main/LICENSE)
Source: chromecache_67.2.dr	String found in binary or memory: https://js.pusher.com
Source: chromecache_82.2.dr	String found in binary or memory: https://ka-f.fontawesome.com
Source: chromecache_82.2.dr	String found in binary or memory: https://kit.fontawesome.com
Source: chromecache_59.2.dr	String found in binary or memory: https://kit.fontawesome.com/f7165dd215.js
Source: chromecache_67.2.dr	String found in binary or memory: https://popper.js.org)
Source: chromecache_67.2.dr	String found in binary or memory: https://pusher.com
Source: chromecache_59.2.dr	String found in binary or memory: https://static.hotjar.com/c/hotjar-
Source: chromecache_59.2.dr	String found in binary or memory: https://testibb.co
Source: chromecache_56.2.dr, chromecache_59.2.dr	String found in binary or memory: https://yandex.com

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49742 version: TLS 1.2

Source: classification engine

Classification label: mal64.win@16/52@32/12

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2012,i,7095061208222682804,7365120454262363207,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://delivery.attempt.failure.ebbs.co.za/public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2012,i,7095061208222682804,7365120454262363207,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Confirm
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Confirm
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Confirm

Source: Window Recorder

Window detected: More than 3 window changes detected

Screenshots

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Network Map

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Contacted Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
18.239.94.35	static-cdn.hotjar.com	United States	16509	AMAZON-02US	false
104.21.234.145	cdn.lr-in.com	United States	13335	CLOUDFLARENETUS	false
54.209.125.179	socket-mt1-ingress-1987402783.us-east-1.elb.amazonaws.com	United States	14618	AMAZON-AESUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
13.227.219.3	script.hotjar.com	United States	16509	AMAZON-02US	false
104.198.23.205	prod-default.lb.logrocket.network	United States	15169	GOOGLEUS	false
41.185.8.221	delivery.attempt.failure.ebbs.co.za	South Africa	36943	GridhostZA	true
142.250.186.164	www.google.com	United States	15169	GOOGLEUS	false
34.201.239.212	ingress-sticky-haproxy-mt1-912d8b7308f82d6c.elb.us-east-1.amazonaws.com	United States	14618	AMAZON-AESUS	false
104.17.25.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false

Private

IP
192.168.2.4
192.168.2.5

Contacted Domains

Name	IP	Active
bg.microsoft.map.fastly.net	199.232.210.172	true
prod-default.lb.logrocket.network	104.198.23.205	true
script.hotjar.com	13.227.219.3	true
cdnjs.cloudflare.com	104.17.25.14	true
socket-mt1-ingress-1987402783.us-east-1.elb.amazonaws.com	54.209.125.179	true
www.google.com	142.250.186.164	true
cdn.lr-in.com	104.21.234.145	true
delivery.attempt.failure.ebbs.co.za	41.185.8.221	true
fp2e7a.wpc.phicdn.net	192.229.221.95	true
ingress-sticky-haproxy-mt1-912d8b7308f82d6c.elb.us-east-1.amazonaws.com	34.201.239.212	true
static-cdn.hotjar.com	18.239.94.35	true
ka-f.fontawesome.com	unknown	unknown
static.hotjar.com	unknown	unknown
kit.fontawesome.com	unknown	unknown
r.lr-in.com	unknown	unknown
sockjs-mt1.pusher.com	unknown	unknown
files.killbot.org	unknown	unknown
ws-mt1.pusher.com	unknown	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://delivery.attempt.failure.ebbs.co.za/public/js/session-recorder.js	true	Avira URL Cloud: phishing	unknown
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0	false	Avira URL Cloud: safe	unknown
https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff?eeccf4f66002c6f2ba24d3d22f2434c2	true	Avira URL Cloud: malware	unknown
https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fontsource/roboto/files/roboto-all-400-normal.woff?376ea5d93f71583052f65de4e0c6a92c	true	Avira URL Cloud: malware	unknown
https://cdn.lr-in.com/logger-1.min.js	false	Avira URL Cloud: safe	unknown
https://delivery.attempt.failure.ebbs.co.za/public/js/app.js	true	Avira URL Cloud: phishing	unknown
about:blank	false	Avira URL Cloud: safe	unknown
https://script.hotjar.com/modules.e4b2dc39f985f11fb1e4.js	false	Avira URL Cloud: safe	unknown
https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fontsource/roboto/files/roboto-latin-400-normal.woff2?4673b4537a84c7f7a130799aa6af329b	true	Avira URL Cloud: malware	unknown
https://delivery.attempt.failure.ebbs.co.za/favicon.ico	true	Avira URL Cloud: phishing	unknown
https://delivery.attempt.failure.ebbs.co.za/images/foo.png	true	Avira URL Cloud: phishing	unknown
https://delivery.attempt.failure.ebbs.co.za/public	true	Avira URL Cloud: phishing	unknown
https://delivery.attempt.failure.ebbs.co.za/public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1	true		unknown
https://ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false	false	Avira URL Cloud: safe	unknown
https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.ttf?527940b104eb2ea366c8630f3f038603	true	Avira URL Cloud: malware	unknown
https://delivery.attempt.failure.ebbs.co.za/images/all.png	true	Avira URL Cloud: malware	unknown
https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.ttf?be9ee23c0c6390141475d519c2c5fb8f	true	Avira URL Cloud: malware	unknown
https://delivery.attempt.failure.ebbs.co.za/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb/	true	Avira URL Cloud: phishing	unknown
https://delivery.attempt.failure.ebbs.co.za/images/logo.png	true	Avira URL Cloud: phishing	unknown
https://delivery.attempt.failure.ebbs.co.za/public/	true	Avira URL Cloud: phishing	unknown
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css	false	Avira URL Cloud: safe	unknown
https://delivery.attempt.failure.ebbs.co.za/public/css/app.css	true	Avira URL Cloud: phishing	unknown
https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	false		unknown
https://static.hotjar.com/c/hotjar-2895475.js?sv=6	false	Avira URL Cloud: safe	unknown
https://r.lr-in.com/i?a=mnnzup%2Fdus&r=5-45c7a511-fc29-489f-80e9-a613844dcd39&t=b399cfee-7e1f-4829-8180-557e2bb6b386&s=0&rs=0%2Cu&u=b3c3f9bd-46b1-4c50-bc98-ee911a1a0acd&is=1	false	Avira URL Cloud: safe	unknown
https://sockjs-mt1.pusher.com/pusher/app/bc5ba70500b3342fb1aa/443/ir465fcn/xhr_streaming?protocol=7&client=js&version=7.0.3&t=1720133101492&n=1	false	Avira URL Cloud: safe	unknown
https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?1551f4f60c37af51121f106501f69b80	true	Avira URL Cloud: malware	unknown
https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.woff?2285773e6b4b172f07d9b777c81b0775	true	Avira URL Cloud: phishing	unknown
https://delivery.attempt.failure.ebbs.co.za/public/css/fonts/webfa-brands-400.woff2?d878b0a6a1144760244ff0665888404c	true	Avira URL Cloud: malware	unknown

Name	Type	MD5	SHA1	SHA256
Chrome Cache Entry: 56	HTML document, ASCII text	3D680A1DD89312818EDFB8A300108C16	C923B655A944DD60387BD25BBB71819F27875D1A	FC7ADEFE7995951D99467B3844684D0E813EEDD0CFFB01386D9592846132A190
Chrome Cache Entry: 57	HTML document, ASCII text, with very long lines (5395)	307DCA9C775906B8DE45869CABE98FCD	2B80C3A2FD4A235B2CC9F89315A554D0721C0DD1	8437BD0EF46A19C9A7C294C53E0429B40E76EBBD5FE9FD73A9025752495DDB1C
Chrome Cache Entry: 58	Web Open Font Format (Version 2), TrueType, length 156388, version 773.1280	AE015E3286EF56A0DAF8E83838A32A88	7C18577FD6C4E7D9036B244215ACE3945372EEFE	41DCA0965BDFD255F85E7FC8E9A3DC1FE3EB810996C553D4EF2B8872737EE825
Chrome Cache Entry: 59	HTML document, Unicode text, UTF-8 text, with very long lines (39884)	B2CDB37F1970C3C19BF3CE059DE49FF8	2206EA804E036C8B4F348B1794F438870C588AC9	AD322D25F18C56E9E7BDE5907494235186D64790440FB02530FC413A419C40DE
Chrome Cache Entry: 60	ASCII text	181990CC2279E4CEA65C9363FB37FEE9	B85A7BA40043B0C48A034D8382629EF7EC6A1E24	36839348D4CD3D5FFCB15317BC5E8F32B77C644D0C6C0F8F19BDF216CAF49293
Chrome Cache Entry: 61	Web Open Font Format (Version 2), TrueType, length 117856, version 773.1280	5674AF1AC41FE62C1B4568CBB6A031FF	83AC1707F24F448C43D0656F224A827014154C4F	0DE3EDEABE89B14F48E7856D2CB631722C600FF66839FAE178D0567902D62A91
Chrome Cache Entry: 62	ASCII text, with very long lines (65321)	7F29CD8C97789AA298AF8C61623CA28B	AF8109E0E5C8BB2C1C3AB44BA7B5D25900CA454A	3E9C73FA687CD4110688668977A7CAA87F5A1DEE0D11F03687BD4871DEEDF1C1
Chrome Cache Entry: 63	HTML document, ASCII text, with very long lines (5395)	307DCA9C775906B8DE45869CABE98FCD	2B80C3A2FD4A235B2CC9F89315A554D0721C0DD1	8437BD0EF46A19C9A7C294C53E0429B40E76EBBD5FE9FD73A9025752495DDB1C
Chrome Cache Entry: 64	ASCII text, with very long lines (27377)	940B066040A876FA1DC7B2EE2D222A58	64B2AEA0B4D60D879D4FF7540192A906FFC0FD92	F4E953827930889E844103C3A6771BD2E9DE17D091B36378C40362271858E075
Chrome Cache Entry: 65	ASCII text, with very long lines (44992)	701984B4995F3C29820E83C999B7EB23	A3B50104A3BFA05BF59A317273816C7D8AE1F81D	67AD94E12A745B1B09C6CD616E20A2AD283ED68F8060BD1DD0D9A2B6AD9DC7EE
Chrome Cache Entry: 66	ASCII text, with very long lines (30837)	269550530CC127B6AA5A35925A7DE6CE	512C7D79033E3028A9BE61B540CF1A6870C896F8	799AEB25CC0373FDEE0E1B1DB7AD6C2F6A0E058DFADAA3379689F583213190BD
Chrome Cache Entry: 67	Unicode text, UTF-8 text	FD900F643203761F2EECA2132FC15F1D	375F23CA9AD75B647373BDA03B02E2D0F6E729BE	399E233CEA4E5468820E5C5F98DDBB156DE729983710CF576A6508F076326C68
Chrome Cache Entry: 68	Web Open Font Format (Version 2), TrueType, length 77160, version 4.459	AF7AE505A9EED503F8B8E6982036873E	D6F48CBA7D076FB6F2FD6BA993A75B9DC1ECBF0C	2ADEFCBC041E7D18FCF2D417879DC5A09997AA64D675B7A3C4B6CE33DA13F3FE
Chrome Cache Entry: 69	ASCII text, with very long lines (27377)	940B066040A876FA1DC7B2EE2D222A58	64B2AEA0B4D60D879D4FF7540192A906FFC0FD92	F4E953827930889E844103C3A6771BD2E9DE17D091B36378C40362271858E075
Chrome Cache Entry: 70	ASCII text, with very long lines (65450)	3496BE12E0886489CBA0E4D3DAEE6686	B7E512EF0D1178A80A96E89948C6755895B153CE	619FEAC205D68F6356FCAD13D6758533011A8ACC7830E3DEB0F763249D7516C0
Chrome Cache Entry: 71	HTML document, ASCII text, with very long lines (5395)	307DCA9C775906B8DE45869CABE98FCD	2B80C3A2FD4A235B2CC9F89315A554D0721C0DD1	8437BD0EF46A19C9A7C294C53E0429B40E76EBBD5FE9FD73A9025752495DDB1C
Chrome Cache Entry: 72	ASCII text, with very long lines (1560)	9C9F596493867F0E7EF5F9FE99103FCE	12746A89A4F6E62240231CA23C8087E6430188AC	9699B18200A9D40ED7859411C33CFA2194174A4746D466123107F888D93DC878
Chrome Cache Entry: 73	HTML document, ASCII text, with very long lines (5395)	307DCA9C775906B8DE45869CABE98FCD	2B80C3A2FD4A235B2CC9F89315A554D0721C0DD1	8437BD0EF46A19C9A7C294C53E0429B40E76EBBD5FE9FD73A9025752495DDB1C
Chrome Cache Entry: 74	ASCII text, with very long lines (608)	A3D53E21A02E37AF6CBC00AC63B3CC1E	E4F2269BAE4B37CCBA5282A154724A3B91720ACA	E1DC27B700A62C005E4521B670CAC08FB0B4B3E02A73C1AC44E7F9A9784BD672
Chrome Cache Entry: 75	ASCII text, with no line terminators	46DF3E5E2D15256CA16616EBFDA5427F	BE8F9B307E458075DA0D43585A05F1D451469182	AF3248D0B278571EFF9A22F8ED1CEB54B70D202B44FD70ECA4CA13A5771CECC3
Chrome Cache Entry: 76	ASCII text, with very long lines (1560)	9C9F596493867F0E7EF5F9FE99103FCE	12746A89A4F6E62240231CA23C8087E6430188AC	9699B18200A9D40ED7859411C33CFA2194174A4746D466123107F888D93DC878
Chrome Cache Entry: 77	ASCII text, with no line terminators	BDF1FEE1577DFA825CBFD8992B5FBFA5	B577391480F9053E86BCAEAA01332575F807113E	2A33E401EAC9AB1C076FBFB2BC1FC18F3018DF9875567F70CA57C1AB10B72E37
Chrome Cache Entry: 78	ASCII text, with very long lines (7840)	375E9718F6CC09000D69AFD2D471004D	EE272196D47265FDB97CD6CC268E69FC317F6A13	F3F89E767A46044255B37A8CABE7854E6E60FB2C1A73E6BCBF4A6EC4164CB3F8
Chrome Cache Entry: 79	ASCII text, with very long lines (65536), with no line terminators	61FC92C6CF2F5B034AEDE1F1F57AFFE3	A7A2CDADE458C083B0D9CE2155A4A449BB43BD60	961584EA1F2FE8AFBB803F101BA0B3587244AE6A58C656349E2B58C9ED68B326
Chrome Cache Entry: 80	ASCII text, with very long lines (65321)	7F29CD8C97789AA298AF8C61623CA28B	AF8109E0E5C8BB2C1C3AB44BA7B5D25900CA454A	3E9C73FA687CD4110688668977A7CAA87F5A1DEE0D11F03687BD4871DEEDF1C1
Chrome Cache Entry: 81	HTML document, ASCII text, with very long lines (5395)	307DCA9C775906B8DE45869CABE98FCD	2B80C3A2FD4A235B2CC9F89315A554D0721C0DD1	8437BD0EF46A19C9A7C294C53E0429B40E76EBBD5FE9FD73A9025752495DDB1C
Chrome Cache Entry: 82	ASCII text, with very long lines (11461)	ADB0E6067A6CA73E99C1245C2EDFC480	11CDC9EE8858343F213AC041A64DF0636A10B985	9A653BB277CAB3AF282B44B2C6279AAAF368BB2C09977EAC06F93572D70035C3
Chrome Cache Entry: 83	ASCII text, with very long lines (608)	A3D53E21A02E37AF6CBC00AC63B3CC1E	E4F2269BAE4B37CCBA5282A154724A3B91720ACA	E1DC27B700A62C005E4521B670CAC08FB0B4B3E02A73C1AC44E7F9A9784BD672

AV Detection

Antivirus / Scanner detection for submitted sample

Source: https://delivery.attempt.failure.ebbs.co.za/public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1	Avira URL Cloud: detection malicious, Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1	SlashNext: detection malicious, Label: Fraudulent Website type: Phishing & Social Engineering

Antivirus detection for URL or domain

Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff?eeccf4f66002c6f2ba24d3d22f2434c2	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/public/js/session-recorder.js	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/public/js/app.js	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fontsource/roboto/files/roboto-all-400-normal.woff?376ea5d93f71583052f65de4e0c6a92c	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fontsource/roboto/files/roboto-latin-400-normal.woff2?4673b4537a84c7f7a130799aa6af329b	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/favicon.ico	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/images/foo.png	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/public	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.ttf?527940b104eb2ea366c8630f3f038603	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/images/logo.png	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/images/all.png	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.ttf?be9ee23c0c6390141475d519c2c5fb8f	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb/	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/public/	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/public/css/app.css	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?1551f4f60c37af51121f106501f69b80	Avira URL Cloud: Label: malware
Source: https://delivery.attempt.failure.ebbs.co.za/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.woff?2285773e6b4b172f07d9b777c81b0775	Avira URL Cloud: Label: phishing
Source: https://delivery.attempt.failure.ebbs.co.za/public/css/fonts/webfa-brands-400.woff2?d878b0a6a1144760244ff0665888404c	Avira URL Cloud: Label: malware

HTML body contains low number of good links

Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb

HTTP Parser: Number of links: 0

Invalid T&C link found

Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: Help and support
Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: Help and support
Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: Help and support
Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: Terms and conditions
Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: Terms and conditions
Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: privacy Notice
Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb	HTTP Parser: Invalid link: Legal notice

Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb

HTTP Parser: No favicon

Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb

HTTP Parser: No <meta name="author".. found

Source: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb

HTTP Parser: No <meta name="copyright".. found

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49742 version: TLS 1.2

Networking

Snort IDS alert for network traffic

Source: Traffic

Snort IDS: 2014545 ET CURRENT_EVENTS TDS Sutra - page redirecting to a SutraTDS 41.185.8.221:443 -> 192.168.2.4:49750

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 184.28.90.27
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.126.137
Source: unknown	TCP traffic detected without corresponding DNS query: 2.19.126.137
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1 HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IndJazhWdUZOdW40T2pYN3Q0d3lwa0E9PSIsInZhbHVlIjoieXhQb1pqNE82QS9SK01RZUN1OWQ1VU9ybjdDR2R4VS9PVzRqTWt0YWczWS9wazVJTGF4bWRSU1lraVFSUWNHK2N3cDZ1K2kzTTh5eHRZcFhrUGlHRkVKVFV3aXRjc2J2R01mR0dMR09TaHJNTzZkR0x5MU9yOHN5aDhXV0R4alAiLCJtYWMiOiJjNWI1YmZjMTc1NWZkODBkYjFlZTZjYzEzNmFmNTRkNjY5MTQzODVmOTg0NDMxMmY0OGRlNzFjYWUxMjdmOTVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Im9PaXh3WEMyQmFqY2xYV05vajJvZ3c9PSIsInZhbHVlIjoiSnRuRmFPQVN5MFR2eTRjbzZNcEZmOHljZFE3OGx2ZXRTNXpwZnlWQncvWjJlUFBYMllyREYwODdwRWJRWXJsdERVWE93WFFyRG1OZHd0YkVMS29iVVNaZGU5d1FIejd2dlVVQUtsQlcrbnlHMGdmRG1jWUptTlhxRmtvOXRzZngiLCJtYWMiOiIwMzlhYTJjN2UzMWQyOGNlNTQ4NGM5YzcxNzE0MGZmM2ExYThhZjg2NDk1OWFlZDliNTA3MGNjM2U4ZDI2Y2IxIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /public/ HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IndJazhWdUZOdW40T2pYN3Q0d3lwa0E9PSIsInZhbHVlIjoieXhQb1pqNE82QS9SK01RZUN1OWQ1VU9ybjdDR2R4VS9PVzRqTWt0YWczWS9wazVJTGF4bWRSU1lraVFSUWNHK2N3cDZ1K2kzTTh5eHRZcFhrUGlHRkVKVFV3aXRjc2J2R01mR0dMR09TaHJNTzZkR0x5MU9yOHN5aDhXV0R4alAiLCJtYWMiOiJjNWI1YmZjMTc1NWZkODBkYjFlZTZjYzEzNmFmNTRkNjY5MTQzODVmOTg0NDMxMmY0OGRlNzFjYWUxMjdmOTVlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Im9PaXh3WEMyQmFqY2xYV05vajJvZ3c9PSIsInZhbHVlIjoiSnRuRmFPQVN5MFR2eTRjbzZNcEZmOHljZFE3OGx2ZXRTNXpwZnlWQncvWjJlUFBYMllyREYwODdwRWJRWXJsdERVWE93WFFyRG1OZHd0YkVMS29iVVNaZGU5d1FIejd2dlVVQUtsQlcrbnlHMGdmRG1jWUptTlhxRmtvOXRzZngiLCJtYWMiOiIwMzlhYTJjN2UzMWQyOGNlNTQ4NGM5YzcxNzE0MGZmM2ExYThhZjg2NDk1OWFlZDliNTA3MGNjM2U4ZDI2Y2IxIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb/ HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentReferer: https://delivery.attempt.failure.ebbs.co.za/public/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkEvSmx2SkZnMndoSG1CVUpObjNwRHc9PSIsInZhbHVlIjoiaGVqdVlXTVdVYkR6SDVBNjl3bE1JSk4wZndwS1ZJbVA1VE5lcWdwMmhnQmhjR2NDZDh3MExDZnB3S2g0TFdqS0VGaXJHbEV0YU5udkFvbzZXNElPNm9kL3pUOEpLZE1wZ0x2ckcrUXNBa1g0d3BZQm54cUpxSThDNFBheGFTYmwiLCJtYWMiOiIyMTU0MTAzYWE5NGFiZWMyMjA1ZWUwYTZmZDk2OTIzZWU4MTNjMThiMGQ3ODliMzIyZjU3YWQ3YzZmY2U5NDYxIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikl0UDVEWTgvL2RmOEV0YlJGZnVvUmc9PSIsInZhbHVlIjoibHJyMG5ablNXdHd6VU1oSHlhL3FtV2pnSTd4VTlNQmhMYjRJZVdpM2lJeGV2OER1K3h1SGZWdXNSalBBV21rVUZWUjdTNGVHd2doSG9mRm1jYVVNTmx3bm9nbHI2ckJlNzR5L2xON0tyVU13MHd0WGs2blRRQ2VxWitQenk4QloiLCJtYWMiOiIyNjM2OWY5OWEyY2QxMTYwYjU4ZmQwZjAxZGNjYTNlOTBhM2Y0M2YxY2RlMTk2NzE3YTI3OTA1ODgzYmNjNDMwIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJb HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: same-originSec-Fetch-Mode: navigateSec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Referer: https://delivery.attempt.failure.ebbs.co.za/public/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkEvSmx2SkZnMndoSG1CVUpObjNwRHc9PSIsInZhbHVlIjoiaGVqdVlXTVdVYkR6SDVBNjl3bE1JSk4wZndwS1ZJbVA1VE5lcWdwMmhnQmhjR2NDZDh3MExDZnB3S2g0TFdqS0VGaXJHbEV0YU5udkFvbzZXNElPNm9kL3pUOEpLZE1wZ0x2ckcrUXNBa1g0d3BZQm54cUpxSThDNFBheGFTYmwiLCJtYWMiOiIyMTU0MTAzYWE5NGFiZWMyMjA1ZWUwYTZmZDk2OTIzZWU4MTNjMThiMGQ3ODliMzIyZjU3YWQ3YzZmY2U5NDYxIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6Ikl0UDVEWTgvL2RmOEV0YlJGZnVvUmc9PSIsInZhbHVlIjoibHJyMG5ablNXdHd6VU1oSHlhL3FtV2pnSTd4VTlNQmhMYjRJZVdpM2lJeGV2OER1K3h1SGZWdXNSalBBV21rVUZWUjdTNGVHd2doSG9mRm1jYVVNTmx3bm9nbHI2ckJlNzR5L2xON0tyVU13MHd0WGs2blRRQ2VxWitQenk4QloiLCJtYWMiOiIyNjM2OWY5OWEyY2QxMTYwYjU4ZmQwZjAxZGNjYTNlOTBhM2Y0M2YxY2RlMTk2NzE3YTI3OTA1ODgzYmNjNDMwIiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://delivery.attempt.failure.ebbs.co.za/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /public/css/app.css HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,/;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /images/logo.png HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /logger-1.min.js HTTP/1.1Host: cdn.lr-in.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://delivery.attempt.failure.ebbs.co.za/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /images/all.png HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /images/foo.png HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /public/js/app.js HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /public/js/session-recorder.js HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1Host: cdnjs.cloudflare.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /c/hotjar-2895475.js?sv=6 HTTP/1.1Host: static.hotjar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://delivery.attempt.failure.ebbs.co.za/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fontsource/roboto/files/roboto-latin-400-normal.woff2?4673b4537a84c7f7a130799aa6af329b HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?1551f4f60c37af51121f106501f69b80 HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /public/css/fonts/webfa-brands-400.woff2?d878b0a6a1144760244ff0665888404c HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D
Source: global traffic	HTTP traffic detected: GET /modules.e4b2dc39f985f11fb1e4.js HTTP/1.1Host: script.hotjar.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://delivery.attempt.failure.ebbs.co.za/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false HTTP/1.1Host: ws-mt1.pusher.comConnection: UpgradePragma: no-cacheCache-Control: no-cacheUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Upgrade: websocketOrigin: https://delivery.attempt.failure.ebbs.co.zaSec-WebSocket-Version: 13Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Sec-WebSocket-Key: zbgCSaqxoelVqAIOt/ac9w==Sec-WebSocket-Extensions: permessage-deflate; client_max_window_bits
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fontsource/roboto/files/roboto-all-400-normal.woff?376ea5d93f71583052f65de4e0c6a92c HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff?eeccf4f66002c6f2ba24d3d22f2434c2 HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.woff?2285773e6b4b172f07d9b777c81b0775 HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.ttf?527940b104eb2ea366c8630f3f038603 HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960; _hjSessionUser_2895475=eyJpZCI6IjIwZjFjMGU4LTlkN2UtNTY5MS1iODEyLTViNzFmZmFiMmFkMCIsImNyZWF0ZWQiOjE3MjAxMzMxMDA2NjYsImV4aXN0aW5nIjp0cnVlfQ==; _hjSession_2895475=eyJpZCI6IjA3OTk5YWI3LTRkZmQtNGRjMy04MDIyLTZmZWI4Y2M2ODY1NCIsImMiOjE3MjAxMzMxMDA2NjcsInMiOjEsInIiOjAsInNiIjowLCJzciI6MCwic2UiOjAsImZzIjoxLCJzcCI6MH0=
Source: global traffic	HTTP traffic detected: GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.ttf?be9ee23c0c6390141475d519c2c5fb8f HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"Origin: https://delivery.attempt.failure.ebbs.co.zasec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: /Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: fontReferer: https://delivery.attempt.failure.ebbs.co.za/public/css/app.cssAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960; _hjSessionUser_2895475=eyJpZCI6IjIwZjFjMGU4LTlkN2UtNTY5MS1iODEyLTViNzFmZmFiMmFkMCIsImNyZWF0ZWQiOjE3MjAxMzMxMDA2NjYsImV4aXN0aW5nIjp0cnVlfQ==; _hjSession_2895475=eyJpZCI6IjA3OTk5YWI3LTRkZmQtNGRjMy04MDIyLTZmZWI4Y2M2ODY1NCIsImMiOjE3MjAxMzMxMDA2NjcsInMiOjEsInIiOjAsInNiIjowLCJzciI6MCwic2UiOjAsImZzIjoxLCJzcCI6MH0=
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://delivery.attempt.failure.ebbs.co.za/public/Krg18BVSvoTOJUgjqNiHEYHkU9uE9XJbAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960; _hjSessionUser_2895475=eyJpZCI6IjIwZjFjMGU4LTlkN2UtNTY5MS1iODEyLTViNzFmZmFiMmFkMCIsImNyZWF0ZWQiOjE3MjAxMzMxMDA2NjYsImV4aXN0aW5nIjp0cnVlfQ==; _hjSession_2895475=eyJpZCI6IjA3OTk5YWI3LTRkZmQtNGRjMy04MDIyLTZmZWI4Y2M2ODY1NCIsImMiOjE3MjAxMzMxMDA2NjcsInMiOjEsInIiOjAsInNiIjowLCJzciI6MCwic2UiOjAsImZzIjoxLCJzcCI6MH0=
Source: global traffic	HTTP traffic detected: GET /favicon.ico HTTP/1.1Host: delivery.attempt.failure.ebbs.co.zaConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: /Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: XSRF-TOKEN=eyJpdiI6IkJWS1J2WjJDWEVLemJvN2ROUmpGSXc9PSIsInZhbHVlIjoiU2ZTeEZxeng0anEzN1U3WFhYWmpNSW55NW5lSE00dVZ4eXVKL2xZaEZaZGxIQWNxSkIvVUV0M2QvbTBBUFc5R044QWRnTzFBQW0vM281YzdVeUkvdkp0ZkFmejcxaTJhQ1hHL0VJTS9NeUw5c2RVZUdTU1BTaWd0dzNLMnNIUDYiLCJtYWMiOiJlNjVmOTgxMWVjMzJiMDA4OTcwODE4MTZiOWEwYWNlNWE5MDU3NGNiOGQ5MWYxODY1NjY1NDZjOTBkNWYwMzQ4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IitwSWZsZ2VTZ0VqRnpGQnJ2dGV1Tmc9PSIsInZhbHVlIjoicDB6YTlXU3R4bVBhcE5KRTF5eWdqVEFCR2RIVWY4Rkw2TG1ISGxyYUlCazZ3L0FSTXpHV1Q3S0ZMWm9pK0lBbWJEc0pSZ0tBUmRhMFRZK3hrSktIem96WkY2TXBzcjZBYktQYmwwWTdEcndPcHpOY1FRNUh0K24zbmQxMC9aYksiLCJtYWMiOiI4ZGRmYTUyMzQ5NzkwNTVhY2MzMDY4ZmMyNGNkYjk3YTliYjM4MDhkNTQ1M2RmMWI5MTk2YjUxOGMzMjNhNWE5IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-45c7a511-fc29-489f-80e9-a613844dcd39%22%2C%22webViewID%22:null%2C%22lastActivity%22:1720133099367}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1720133099371}; _lr_uf_-mnnzup=a03be194-11f3-45a5-9e64-5c3cc2892960; _hjSessionUser_2895475=eyJpZCI6IjIwZjFjMGU4LTlkN2UtNTY5MS1iODEyLTViNzFmZmFiMmFkMCIsImNyZWF0ZWQiOjE3MjAxMzMxMDA2NjYsImV4aXN0aW5nIjp0cnVlfQ==; _hjSession_2895475=eyJpZCI6IjA3OTk5YWI3LTRkZmQtNGRjMy04MDIyLTZmZWI4Y2M2ODY1NCIsImMiOjE3MjAxMzMxMDA2NjcsInMiOjEsInIiOjAsInNiIjowLCJzciI6MCwic2UiOjAsImZzIjoxLCJzcCI6MH0=

Source: global traffic	DNS traffic detected: DNS query: delivery.attempt.failure.ebbs.co.za
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: files.killbot.org
Source: global traffic	DNS traffic detected: DNS query: kit.fontawesome.com
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: ka-f.fontawesome.com
Source: global traffic	DNS traffic detected: DNS query: cdn.lr-in.com
Source: global traffic	DNS traffic detected: DNS query: static.hotjar.com
Source: global traffic	DNS traffic detected: DNS query: script.hotjar.com
Source: global traffic	DNS traffic detected: DNS query: ws-mt1.pusher.com
Source: global traffic	DNS traffic detected: DNS query: sockjs-mt1.pusher.com
Source: global traffic	DNS traffic detected: DNS query: r.lr-in.com

Source: unknown

Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:44:57 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:44:57 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:44:58 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:00 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:00 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:00 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:02 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:04 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private
Source: global traffic	HTTP traffic detected: HTTP/1.1 404 Not FoundServer: nginxDate: Thu, 04 Jul 2024 22:45:04 GMTContent-Type: text/html; charset=UTF-8Transfer-Encoding: chunkedConnection: closeX-Powered-By: PHP/8.0.30Cache-Control: no-cache, private

Source: chromecache_66.2.dr	String found in binary or memory: http://fontawesome.io
Source: chromecache_66.2.dr	String found in binary or memory: http://fontawesome.io/license
Source: chromecache_67.2.dr	String found in binary or memory: http://js.pusher.com
Source: chromecache_59.2.dr	String found in binary or memory: https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
Source: chromecache_59.2.dr	String found in binary or memory: https://delivery.attempt.failure.ebbs.co.za/public/css/app.css
Source: chromecache_59.2.dr	String found in binary or memory: https://delivery.attempt.failure.ebbs.co.za/public/js/app.js
Source: chromecache_59.2.dr	String found in binary or memory: https://delivery.attempt.failure.ebbs.co.za/public/js/session-recorder.js
Source: chromecache_56.2.dr, chromecache_59.2.dr	String found in binary or memory: https://files.killbot.org/.cdn-cgi/killbot-security.js
Source: chromecache_80.2.dr, chromecache_83.2.dr, chromecache_69.2.dr, chromecache_60.2.dr, chromecache_76.2.dr, chromecache_62.2.dr, chromecache_72.2.dr, chromecache_74.2.dr, chromecache_64.2.dr	String found in binary or memory: https://fontawesome.com
Source: chromecache_80.2.dr, chromecache_83.2.dr, chromecache_69.2.dr, chromecache_60.2.dr, chromecache_76.2.dr, chromecache_62.2.dr, chromecache_72.2.dr, chromecache_74.2.dr, chromecache_64.2.dr	String found in binary or memory: https://fontawesome.com/license/free
Source: chromecache_73.2.dr, chromecache_71.2.dr, chromecache_63.2.dr, chromecache_81.2.dr, chromecache_57.2.dr	String found in binary or memory: https://fonts.googleapis.com/css2?family=Nunito&display=swap
Source: chromecache_73.2.dr, chromecache_71.2.dr, chromecache_63.2.dr, chromecache_81.2.dr, chromecache_57.2.dr	String found in binary or memory: https://fonts.gstatic.com
Source: chromecache_60.2.dr	String found in binary or memory: https://getbootstrap.com/)
Source: chromecache_67.2.dr	String found in binary or memory: https://github.com/es-shims/es5-shim
Source: chromecache_79.2.dr	String found in binary or memory: https://github.com/js-cookie/js-cookie
Source: chromecache_67.2.dr	String found in binary or memory: https://github.com/pusher/pusher-js/tree/cc491015371a4bde5743d1c87a0fbac0feb53195#encrypted-channel-
Source: chromecache_60.2.dr	String found in binary or memory: https://github.com/twbs/bootstrap/blob/main/LICENSE)
Source: chromecache_67.2.dr	String found in binary or memory: https://js.pusher.com
Source: chromecache_82.2.dr	String found in binary or memory: https://ka-f.fontawesome.com
Source: chromecache_82.2.dr	String found in binary or memory: https://kit.fontawesome.com
Source: chromecache_59.2.dr	String found in binary or memory: https://kit.fontawesome.com/f7165dd215.js
Source: chromecache_67.2.dr	String found in binary or memory: https://popper.js.org)
Source: chromecache_67.2.dr	String found in binary or memory: https://pusher.com
Source: chromecache_59.2.dr	String found in binary or memory: https://static.hotjar.com/c/hotjar-
Source: chromecache_59.2.dr	String found in binary or memory: https://testibb.co
Source: chromecache_56.2.dr, chromecache_59.2.dr	String found in binary or memory: https://yandex.com

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49769 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49769
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789

Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.4:49742 version: TLS 1.2

Source: classification engine

Classification label: mal64.win@16/52@32/12

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2012,i,7095061208222682804,7365120454262363207,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://delivery.attempt.failure.ebbs.co.za/public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=2012,i,7095061208222682804,7365120454262363207,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Confirm
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Confirm
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Automated click: Confirm

Source: Window Recorder

Window detected: More than 3 window changes detected

ID:	1467899
Product:	CloudBasic
Start time:	00:43:36
Start date:	05.07.2024
Cookbook:	browseurl.jbs
System description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Architecture:	WINDOWS

Windows Analysis Report
https://delivery.attempt.failure.ebbs.co.za/public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report https://delivery.attempt.failure.ebbs.co.za/public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1

Overview

General Information

Detection

Signatures

Classification

Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Screenshots

Behavior Graph

Network Map

Contacted Public IPs

Private

Contacted Domains

Contacted URLs

Windows Analysis Report
https://delivery.attempt.failure.ebbs.co.za/public/MY096OineFzTCVJ56qDw3aMDByE0CDQ1