{"report_id":"02f32687-ce74-434c-bd2a-9e06080201bf","version":6,"status":"done","tags":["pdf"],"date":"2025-09-01T10:52:35Z","url":{"schema":"https","addr":"bit.ly/3r2N9Rx","fqdn":"bit.ly","domain":"bit.ly","tld":"ly"},"ip":{"addr":"67.199.248.10","port":0,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"www.dhlservices.it/form/DHL_Delega_Ritiro_Spedizione.pdf","fqdn":"www.dhlservices.it","domain":"dhlservices.it","tld":"it"},"title":"DHL_Delega_Ritiro_Spedizione.pdf"},"submit":{"url":{"schema":"https","addr":"bit.ly/3r2N9Rx","fqdn":"bit.ly","domain":"bit.ly","tld":"ly"},"ip":{"addr":"67.199.248.10","port":0,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-06T10:52:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"bit.ly","ip":{"addr":"67.199.248.11","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"domain_registered":"2008-05-17","domain_rank":95,"first_seen":"2012-05-30T08:37:18Z","last_seen":"2025-08-26T14:07:48.968785Z","alert_count":0,"request_count":1,"received_data":29651,"sent_data":482,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]},{"fqdn":"www.dhlservices.it","ip":{"addr":"165.72.193.217","port":443,"asn":2571,"as":"DHLNET","country":"Czechia","country_code":"CZ"},"domain_registered":"2005-02-03","domain_rank":0,"first_seen":"2017-05-30T06:43:36Z","last_seen":"2025-09-01T10:21:12.238579Z","alert_count":0,"request_count":2,"received_data":51978,"sent_data":966,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":[{"md5":"344a1576ea91ce54688327de5842ed31","sha1":"de5fd934be232ed0d186818ed38033d54d3d9b3e","sha256":"18a15fc2fb32d4f02513d7a5a8b5b53f52fa97399c10e8ec4315e8b0730b9b53","sha512":"1088c3d622f7441c1913ae340efe3aeee4c468242794d4ea790ecfd8dfa92f4cb3f8fed8db91b44557318e647e2dab28c37489c70816e68b946e9b110d9bb969","magic":"PDF document, version 1.5 (zip deflate encoded)","size":29103,"url":{"schema":"https","addr":"www.dhlservices.it/form/DHL_Delega_Ritiro_Spedizione.pdf","fqdn":"www.dhlservices.it","domain":"dhlservices.it","tld":"it"},"ip":{"addr":"165.72.193.217","port":443,"asn":2571,"as":"DHLNET","country":"Czechia","country_code":"CZ"},"archive":null,"alerts":{"urlquery":null,"analyzer":null}}],"telegram":null,"pdfs":[{"url":{"schema":"https","addr":"www.dhlservices.it/form/DHL_Delega_Ritiro_Spedizione.pdf","fqdn":"www.dhlservices.it","domain":"dhlservices.it","tld":"it"},"ip":{"addr":"165.72.193.217","port":443,"asn":2571,"as":"DHLNET","country":"Czechia","country_code":"CZ"},"md5":"344a1576ea91ce54688327de5842ed31","sha1":"de5fd934be232ed0d186818ed38033d54d3d9b3e","sha256":"18a15fc2fb32d4f02513d7a5a8b5b53f52fa97399c10e8ec4315e8b0730b9b53","sha512":"1088c3d622f7441c1913ae340efe3aeee4c468242794d4ea790ecfd8dfa92f4cb3f8fed8db91b44557318e647e2dab28c37489c70816e68b946e9b110d9bb969","magic":"PDF document, version 1.5 (zip deflate encoded)","size":29103,"meta":{"version":"1.5","author":"","title":"","subject":"","producer":"Acrobat Distiller 10.0.0 (Windows)","creator":"PScript5.dll Version 5.2.2","page_count":1},"extracted_urls":null,"alerts":{"urlquery":null,"analyzer":null}}],"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"bit.ly/3r2N9Rx","fqdn":"bit.ly","domain":"bit.ly","tld":"ly"},"ip":{"addr":"67.199.248.11","port":443,"asn":396982,"as":"GOOGLE-CLOUD-PLATFORM","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-01T10:52:14.487Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bit.ly","organization":"Bitly, Inc."},"issuer":{"commonName":"DigiCert EV RSA CA G2","organization":"DigiCert Inc"},"validity":{"start":"Wed, 26 Mar 2025 00:00:00 GMT","end":"Wed, 25 Mar 2026 23:59:59 GMT"},"fingerprint":{"sha1":"27:5C:6D:C2:BB:86:53:71:05:85:B4:25:93:DD:C8:6D:75:BB:83:1F","sha256":"CC:0F:F8:A4:43:B8:29:36:53:46:BA:3F:C0:C9:3F:06:2D:63:EF:36:ED:7F:99:7E:0F:F6:F0:A2:70:1C:F1:75"}}},"request":{"raw":"GET /3r2N9Rx HTTP/1.1\r\nHost: bit.ly\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\nserver: nginx\r\ndate: Mon, 01 Sep 2025 10:52:14 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 117\r\ncache-control: private, max-age=90\r\ncontent-security-policy: referrer always;\r\nlocation: https://www.dhlservices.it/form/DHL_Delega_Ritiro_Spedizione.pdf\r\nreferrer-policy: unsafe-url\r\nset-cookie: _bit=p81aQe-86ee5a78165a846bd3-00X; Domain=bit.ly; Expires=Sat, 28 Feb 2026 10:52:14 GMT\r\nx-robots-tag: noindex\r\nvia: 1.1 google\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Google Cloud CDN","description":"Cloud CDN uses Google's global edge network to serve content closer to users.","website":"https://cloud.google.com/cdn","common_platform_enumeration":"","icon":"google-cloud-cdn.svg","categories":["CDN"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":29103,"size_decoded":0,"mime_type":"application/pdf","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-08T01:34:10.730701Z","times_seen":16226504,"resource_available":true,"data":null}},"time_used":257,"timings":{"blocked":61,"dns":14,"connect":12,"send":0,"wait":127,"receive":1,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.dhlservices.it/form/DHL_Delega_Ritiro_Spedizione.pdf","fqdn":"www.dhlservices.it","domain":"dhlservices.it","tld":"it"},"ip":{"addr":"165.72.193.217","port":443,"asn":2571,"as":"DHLNET","country":"Czechia","country_code":"CZ"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-09-01T10:52:14.683Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.dhlservices.it","organization":"Deutsche Post AG"},"issuer":{"commonName":"DPDHL Global TLS CA - I5","organization":"Deutsche Post AG"},"validity":{"start":"Fri, 20 Jun 2025 06:39:10 GMT","end":"Sat, 20 Jun 2026 06:38:10 GMT"},"fingerprint":{"sha1":"5B:FA:20:E2:1F:FD:E7:FB:DA:CF:F2:02:47:94:B6:76:D9:AB:6F:B6","sha256":"AB:B6:9D:4A:A9:70:70:1D:25:00:AB:F3:ED:60:A8:6C:AE:6C:20:93:38:E0:82:7E:24:D7:96:4B:69:DA:7D:4E"}}},"request":{"raw":"GET /form/DHL_Delega_Ritiro_Spedizione.pdf HTTP/1.1\r\nHost: www.dhlservices.it\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 \r\nAccept-Ranges: bytes\r\nETag: W/\"29103-1643212273055\"\r\nLast-Modified: Wed, 26 Jan 2022 15:51:13 GMT\r\nContent-Type: application/pdf\r\nContent-Length: 29103\r\nDate: Mon, 01 Sep 2025 10:52:14 GMT\r\nKeep-Alive: timeout=60\r\nConnection: keep-alive\r\nSet-Cookie: BIGipServerpl_www.dhlservices.it_443=!lMo/g3XAOF+3f/tqPEFLPpU+yLx3ctQAjyL5VBmyhaHngkQve/WCZWmsr0br7tVpcWH76ZZIuGYdhU8=; expires=Mon, 01-Sep-2025 11:22:14 GMT; path=/; Httponly; Secure\nTS0196d71f=012d4839b3bcb85cefa1e30ae2edb4cc58f436190e6352a92f82b571d9bbbbb7b5c04621f324b681381867468ce586eb84d8e2f2be; Path=/; Domain=.www.dhlservices.it; Secure; HttpOnly\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":29103,"size_decoded":0,"mime_type":"application/pdf","magic":"PDF document, version 1.5 (zip deflate encoded)","md5":"344a1576ea91ce54688327de5842ed31","sha1":"de5fd934be232ed0d186818ed38033d54d3d9b3e","sha256":"18a15fc2fb32d4f02513d7a5a8b5b53f52fa97399c10e8ec4315e8b0730b9b53","sha512":"1088c3d622f7441c1913ae340efe3aeee4c468242794d4ea790ecfd8dfa92f4cb3f8fed8db91b44557318e647e2dab28c37489c70816e68b946e9b110d9bb969","ssdeep":"384:hTJovzuvBgj2FyEGMh5V0U8L5HNyzd+EO8i4lREEPcV9717lgHsAer8xCGkhIz:ijMhjh8RjsxlE0c7pP3KIIz","tlshash":"22d2d0fe60afde860c1238e365d5414084e350861d794902f98e1c97af44db7b693fa3","first_seen":"2025-09-01T10:21:12.986803Z","last_seen":"2025-09-01T10:52:38.215156Z","times_seen":2,"resource_available":false,"data":null}},"time_used":392,"timings":{"blocked":139,"dns":1,"connect":29,"send":0,"wait":83,"receive":29,"ssl":109},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.dhlservices.it/favicon.ico","fqdn":"www.dhlservices.it","domain":"dhlservices.it","tld":"it"},"ip":{"addr":"165.72.193.217","port":443,"asn":2571,"as":"DHLNET","country":"Czechia","country_code":"CZ"},"is_navigation_request":false,"resource_type":"img","requested_by":"resource://pdf.js/web/viewer.html","date":"2025-09-01T10:52:15.377Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"www.dhlservices.it","organization":"Deutsche Post AG"},"issuer":{"commonName":"DPDHL Global TLS CA - I5","organization":"Deutsche Post AG"},"validity":{"start":"Fri, 20 Jun 2025 06:39:10 GMT","end":"Sat, 20 Jun 2026 06:38:10 GMT"},"fingerprint":{"sha1":"5B:FA:20:E2:1F:FD:E7:FB:DA:CF:F2:02:47:94:B6:76:D9:AB:6F:B6","sha256":"AB:B6:9D:4A:A9:70:70:1D:25:00:AB:F3:ED:60:A8:6C:AE:6C:20:93:38:E0:82:7E:24:D7:96:4B:69:DA:7D:4E"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: www.dhlservices.it\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://www.dhlservices.it/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 \r\nAccept-Ranges: bytes\r\nETag: W/\"21630-1372751948000\"\r\nLast-Modified: Tue, 02 Jul 2013 07:59:08 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 21630\r\nDate: Mon, 01 Sep 2025 10:52:14 GMT\r\nKeep-Alive: timeout=60\r\nConnection: keep-alive\r\nSet-Cookie: BIGipServerpl_www.dhlservices.it_443=!4p6A6XLegrd1UlJqPEFLPpU+yLx3cl6JBIqoo3s4/9xVdXDD83CmfluoZKWjHXpGvkf4LdfIvvGGYmE=; expires=Mon, 01-Sep-2025 11:22:15 GMT; path=/; Httponly; Secure\nTS0196d71f=012d4839b3dae7d68a738cb1b12e39a0b3b74c4f09fa0d7a1ed012ec938ec1dfbefcdce5a6a2bdf6d31ce67d5124d32b6d4f423295; Path=/; Domain=.www.dhlservices.it; Secure; HttpOnly\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":null,"data":{"size":21630,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 9 icons, 16x16, 16 colors, 16x16","md5":"4644f2d45601037b8423d45e13194c93","sha1":"dcfdc7b05cb629f3b91a7267c7f304306f461724","sha256":"64a3170a912786e9eece7e347b58f36471cb9d0bc790697b216c61050e6b1f08","sha512":"1c300f2a8c71615ab8b4df72801a3c77b245ca6199fee3ff3775553e1418d895ca336326ae687a4584a8f68645f9938e4de76511062d260a66818959c952deee","ssdeep":"192:yH0NZsp7JpVPpmcClKs+OzR16MwEyOX/tz7:K0K7J3PpCvR1VyQ/tX","tlshash":"dba272d1b030c959c6999673cfe6deec26697c22ac405c1b32d27f5f3a31bc168127a6","first_seen":"2023-05-08T20:15:29Z","last_seen":"2026-06-06T11:53:13.732709Z","times_seen":1446,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}