{"report_id":"014ce28b-9021-4279-95e4-0de4c42e4cc8","version":6,"status":"done","tags":[],"date":"2026-02-22T23:33:49Z","url":{"schema":"https","addr":"mgmapket6.com/","fqdn":"mgmapket6.com","domain":"mgmapket6.com","tld":"com"},"ip":{"addr":"104.244.79.9","port":0,"asn":53667,"as":"PONYNET","country":"Luxembourg","country_code":"LU"},"final":{"url":{"schema":"https","addr":"mgmapket6.com/","fqdn":"mgmapket6.com","domain":"mgmapket6.com","tld":"com"},"title":"Один момент…","dom":{"size":43812,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1176)","md5":"6a89f7aae1b4ac2937d9205aede3fe5b","sha1":"ad6f67f0780718b5bc825291215c3c9a742d9c8a","sha256":"a3883d1108a2f3ec04647c3ced90c69485ec10247af4ad41d9c196c73d422e7d","sha512":"ec265ee590833835eab0a4a986adcd74815ae70c8576bcfc6ad38d9c49816ce9a7017a42d422ecb9de97177b862de83f29b64ed104930d1c5d6213df98bf0bc2","ssdeep":"768:PZ5x2SMO/gJqAZFvE6FnFmFrsFtYDugVs7KsFmalFv+m:J8AAZHN8fuTzvZ","tlshash":"8a13a11779f912597443a3ba2bbf368473338017da0afe1a3acc02609f4d19d5db2798","dom_hash":"domhash00c4b63d9239d4e5a0102a9200da3968","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"mgmapket6.com/","fqdn":"mgmapket6.com","domain":"mgmapket6.com","tld":"com"},"ip":{"addr":"104.244.79.9","port":0,"asn":53667,"as":"PONYNET","country":"Luxembourg","country_code":"LU"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-29T23:33:49Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"mgmapket6.com","ip":{"addr":"104.244.79.9","port":443,"asn":53667,"as":"PONYNET","country":"Luxembourg","country_code":"LU"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":3,"received_data":120562,"sent_data":1722,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"mgmapket6.com/","fqdn":"mgmapket6.com","domain":"mgmapket6.com","tld":"com"},"ip":{"addr":"104.244.79.9","port":443,"asn":53667,"as":"PONYNET","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1c546041fc1afca1e7649651fcb3b04a","sha1":"150f493e7456e1a3a345c2a7eae31eba308a94f0","sha256":"fa8e741fc95007bd41203e859abc9ccb1c421ce486e4cbaed1d939c4fad324cc","sha512":"63e68e6a26cdf2a7b43c5b88647237519fd64dc579ae0e2827be613aceaadacf588b6997042d40178929553f307ff7793494ffc083809bb89c58c47b4ee73af2","ssdeep":"","tlshash":"cb81fd2a38e3105509abb6b60baf179834309203b40add947d2c43909f61f96b9e7f9c","size":3973,"data":"","first_seen":"2026-02-21T20:25:19.109603Z","last_seen":"2026-06-02T02:57:53.40337Z","times_seen":56,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mgmapket6.com/internalApi/cloudflare_captcha_iframe","fqdn":"mgmapket6.com","domain":"mgmapket6.com","tld":"com"},"ip":{"addr":"104.244.79.9","port":443,"asn":53667,"as":"PONYNET","country":"Luxembourg","country_code":"LU"},"introduction_type":"scriptElement","is_inline":true,"md5":"1dc3a7eb9d5f1c54c539d4f985469cc8","sha1":"e6417cf7a15be9fe83af73a06597afc071897efe","sha256":"36b1d5a9169c01f19302bd1376f305cd592db909ca5ee7845d5d6a626f72c456","sha512":"b7a1abf096938a455c10e41c860b0f70f88a51bfd035e503ff4b43e14cb3eb7f58a21630eed5a7023f7f3b84067fe75695d0f9062e3dbb92f59189433a0efdda","ssdeep":"192:lxRzgwDFSglXxwsOZkRO0Cd5zh7wlVALcHSz3wbluAA6:FzgwDFSg/G7n+mIl/","tlshash":"46e1336e6dfb20794643b57a07ef9e05323694672105de01bc7c0275afd0ea151b2fe8","size":6818,"data":"","first_seen":"2026-02-21T20:25:19.112917Z","last_seen":"2026-06-02T02:57:53.404535Z","times_seen":54,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"mgmapket6.com/","fqdn":"mgmapket6.com","domain":"mgmapket6.com","tld":"com"},"ip":{"addr":"104.244.79.9","port":443,"asn":53667,"as":"PONYNET","country":"Luxembourg","country_code":"LU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-22T23:33:28.509Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mgmapket6.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 19 Jan 2026 12:04:35 GMT","end":"Sun, 19 Apr 2026 12:04:34 GMT"},"fingerprint":{"sha1":"08:6D:6D:B1:39:78:B8:A3:00:76:FC:DA:F6:3D:90:60:82:16:F5:DC","sha256":"4A:3E:2D:93:D8:82:26:04:19:BC:00:12:DC:07:B5:76:E0:C7:39:E3:44:E0:57:BC:A6:53:AF:69:58:41:29:2A"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: mgmapket6.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0\r\ndate: Sun, 22 Feb 2026 23:31:01 GMT\r\ncontent-type: text/html; charset=utf-8\r\nset-cookie: internal_api_session_id=b6811342-727a-40de-bbbc-b88d89c0ad7c; Path=/; Max-Age=1800\ninternal_api_tor_id=a17861c0-baff-496c-9bb0-f9cf4620af9d; Path=/; Max-Age=1800\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":38092,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (620)","md5":"62ba1b1223c1c6d9cd59c4c6d748b585","sha1":"910e6c9ddcde50d8caa593044f746d389e86805b","sha256":"2438cb25d2f2265ca7d30fb72a87cf0a4397fe0d218ed3a59cc6a8ec4d7331e2","sha512":"0448d981706294623374d7f250f2ccd42a6146e3946fa59dcc11d6e6fdf9b34230c0bfcad0fb0116d7bc171734e08f429f6a547c088ab6b14eb5d6e5115b6216","ssdeep":"384:xYMsJ5hGCY/OD7Q5xgA5FE2WU9yKqVkYUXddN6kTAZna:yJ5hGCMO/Q5xgA5FfWU9OVkYkt","tlshash":"6503301b69f1164a2c43a6795bff26806339a003de4afe2a7f8d13848f4d15d6d7238d","first_seen":"2026-02-22T23:33:53.286506Z","last_seen":"2026-02-22T23:33:53.286506Z","times_seen":1,"resource_available":false,"data":null}},"time_used":279,"timings":{"blocked":88,"dns":28,"connect":29,"send":0,"wait":97,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mgmapket6.com/internalApi/cloudflare_captcha_iframe","fqdn":"mgmapket6.com","domain":"mgmapket6.com","tld":"com"},"ip":{"addr":"104.244.79.9","port":443,"asn":53667,"as":"PONYNET","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://mgmapket6.com/","date":"2026-02-22T23:33:28.867Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mgmapket6.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 19 Jan 2026 12:04:35 GMT","end":"Sun, 19 Apr 2026 12:04:34 GMT"},"fingerprint":{"sha1":"08:6D:6D:B1:39:78:B8:A3:00:76:FC:DA:F6:3D:90:60:82:16:F5:DC","sha256":"4A:3E:2D:93:D8:82:26:04:19:BC:00:12:DC:07:B5:76:E0:C7:39:E3:44:E0:57:BC:A6:53:AF:69:58:41:29:2A"}}},"request":{"raw":"GET /internalApi/cloudflare_captcha_iframe HTTP/1.1\r\nHost: mgmapket6.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mgmapket6.com/\r\nCookie: internal_api_session_id=b6811342-727a-40de-bbbc-b88d89c0ad7c; internal_api_tor_id=a17861c0-baff-496c-9bb0-f9cf4620af9d\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0\r\ndate: Sun, 22 Feb 2026 23:31:01 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":43723,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (1176)","md5":"e8a476637d76c4bcf81c9efd029d949e","sha1":"e6863f73eb6f4bce56427d7747e444eab091db3c","sha256":"0606499bb3f3a72691e6e2fce009915af2d38295ba5bfdb1e5c3ccd39ef385ef","sha512":"9323d1be6cff8c2036f3f3d0e163191b7c4542b6b6410f607d73cb7bd1ca13a328cc63ba989fff8f5673baf621bbc1e891f69677e17c7a54a65c9bf85b09ee11","ssdeep":"768:0Z5x2SMO/gJqAZFvE6FnFmFrsFtYUugVs7KsFmalFv+B:68AAZHN8IuTzvK","tlshash":"4513b21779f912597443a3ba2bbf368473338017da0afe1a3acc02609f4d19d5db2798","first_seen":"2026-02-21T20:25:19.103233Z","last_seen":"2026-06-02T02:57:53.400774Z","times_seen":55,"resource_available":false,"data":null}},"time_used":119,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":119,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mgmapket6.com/favicon.ico","fqdn":"mgmapket6.com","domain":"mgmapket6.com","tld":"com"},"ip":{"addr":"104.244.79.9","port":443,"asn":53667,"as":"PONYNET","country":"Luxembourg","country_code":"LU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mgmapket6.com/","date":"2026-02-22T23:33:28.898Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"mgmapket6.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 19 Jan 2026 12:04:35 GMT","end":"Sun, 19 Apr 2026 12:04:34 GMT"},"fingerprint":{"sha1":"08:6D:6D:B1:39:78:B8:A3:00:76:FC:DA:F6:3D:90:60:82:16:F5:DC","sha256":"4A:3E:2D:93:D8:82:26:04:19:BC:00:12:DC:07:B5:76:E0:C7:39:E3:44:E0:57:BC:A6:53:AF:69:58:41:29:2A"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: mgmapket6.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mgmapket6.com/\r\nCookie: internal_api_session_id=b6811342-727a-40de-bbbc-b88d89c0ad7c; internal_api_tor_id=a17861c0-baff-496c-9bb0-f9cf4620af9d\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.18.0\r\ndate: Sun, 22 Feb 2026 23:31:01 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.18.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":38092,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (620)","md5":"1b153cb8284cafd4ab57c89df79e442c","sha1":"a303eaf54868225dbabd42e597b06a37706224bb","sha256":"c38d71704390636a00fdab4b301194e24a0198c841a348f7305c0f509886c318","sha512":"c1560a0fca13bfd14ff32e5b856bf927ba17c99e9f0435d35934b5d0f7f72280b1823a89cabf96f72e471471f57a72b369aebb0a9d3544fc4e6c5d1d855a53c3","ssdeep":"384:xYMsJ5hGCY/OD7Q5xgA5FE2WU9yKqVkYVXddN6kTAZna:yJ5hGCMO/Q5xgA5FfWU9OVkYJt","tlshash":"6003301b69f1164a2c43a6795bff26806339a003de4afe2a7f8d13848f4d15d6d7238d","first_seen":"2026-02-22T23:33:53.290615Z","last_seen":"2026-02-22T23:33:53.290615Z","times_seen":1,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":86,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}