{"report_id":"0dbb0066-5776-4217-852e-876d745d3976","version":6,"status":"done","tags":["opendir"],"date":"2026-04-09T23:35:16Z","url":{"schema":"http","addr":"cabtrac.com.ar/","fqdn":"cabtrac.com.ar","domain":"cabtrac.com.ar","tld":"com.ar"},"ip":{"addr":"23.227.176.27","port":0,"asn":29802,"as":"HVC-AS","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"cabtrac.com.ar/","fqdn":"cabtrac.com.ar","domain":"cabtrac.com.ar","tld":"com.ar"},"title":"Index of /","dom":{"size":580,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"910865cdcc904b6252f501191bee26c5","sha1":"a5e488a61c05ea06278541ca6061737f1d5a7a05","sha256":"d126a457b31ab3c55fb40fa3463aafe5732bb6fce281e4ce768649d4a03b0dc6","sha512":"f1425d44b89549d86c01ab5e433d6a5e9e919ef0427f4de0c5115a9e5e960d4f9eabfaaac618cee4100bf09f2655f4c7b8d9bf053f31b1dc0ddd1d5e17c5117c","ssdeep":"","tlshash":"54f04686a5d0227b3d91361f80407cca8af6c0b982b18db03c0fb897db45ef484072e5","dom_hash":"domhash6bc22f81b9c0fe616439e7fc6f9216cc","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"cabtrac.com.ar/","fqdn":"cabtrac.com.ar","domain":"cabtrac.com.ar","tld":"com.ar"},"ip":{"addr":"23.227.176.27","port":0,"asn":29802,"as":"HVC-AS","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-14T23:35:16Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"cabtrac.com.ar","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Audit - Open directory","verdict":"none","severity":"audit","comment":"","tags":["opendir"],"meta":null},{"sensor_name":"urlquery","alert":"Audit - Open directory","verdict":"none","severity":"audit","comment":"","tags":["opendir"],"meta":null}]},"summary":[{"fqdn":"cabtrac.com.ar","ip":{"addr":"23.227.176.27","port":443,"asn":29802,"as":"HVC-AS","country":"United States","country_code":"US"},"domain_registered":"2007-08-16","domain_rank":0,"first_seen":"2012-10-11T16:38:03Z","last_seen":"2026-01-05T22:23:39.096601Z","alert_count":3,"request_count":2,"received_data":1406,"sent_data":918,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Audit - Open directory","verdict":"none","severity":"audit","comment":"","tags":["opendir"],"meta":null}]},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"cabtrac.com.ar/favicon.ico","fqdn":"cabtrac.com.ar","domain":"cabtrac.com.ar","tld":"com.ar"},"ip":{"addr":"23.227.176.27","port":443,"asn":29802,"as":"HVC-AS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://cabtrac.com.ar/","date":"2026-04-09T23:34:54.780Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cabtrac.com.ar","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 04:11:40 GMT","end":"Sun, 24 May 2026 04:11:39 GMT"},"fingerprint":{"sha1":"DC:C6:12:4C:60:3C:21:E3:A8:CA:43:04:C4:4B:5D:6B:07:05:66:ED","sha256":"41:7F:2C:B9:E9:B7:42:0B:22:20:F8:E1:CD:76:6D:F5:E0:8D:61:6F:84:5D:6F:9C:46:9A:CE:87:8D:CC:C2:A0"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: cabtrac.com.ar\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cabtrac.com.ar/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Thu, 09 Apr 2026 23:34:54 GMT\r\nServer: Apache\r\nContent-Length: 355\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":355,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"4525b2d648f7c457a689fd96421783a5","sha1":"11bfe30ce44585a15a38e86bc094224ddfe2c08e","sha256":"cc0b4e42510d49c6decd464123ecf3b14ae9b47f9b4ed2ee64893e2d6520a264","sha512":"94e3e8246cf38ff7740e51aa115c8c455b14f78e672c2686b782c0ce30b6fa2dbd91a78b29b3964d9c0414aabd4b9391fd5db326665e25b4b8e73dae60ffe979","ssdeep":"","tlshash":"71e0c04f4057b3474011a2907dc01291e505236b38a152f93ac09467500897dc4aa2dd","first_seen":"2025-12-09T03:51:58.5943Z","last_seen":"2026-04-10T02:30:10.793098Z","times_seen":27314,"resource_available":true,"data":null}},"time_used":125,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":125,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"cabtrac.com.ar","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cabtrac.com.ar/","fqdn":"cabtrac.com.ar","domain":"cabtrac.com.ar","tld":"com.ar"},"ip":{"addr":"23.227.176.27","port":443,"asn":29802,"as":"HVC-AS","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-09T23:34:53.781Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cabtrac.com.ar","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Feb 2026 04:11:40 GMT","end":"Sun, 24 May 2026 04:11:39 GMT"},"fingerprint":{"sha1":"DC:C6:12:4C:60:3C:21:E3:A8:CA:43:04:C4:4B:5D:6B:07:05:66:ED","sha256":"41:7F:2C:B9:E9:B7:42:0B:22:20:F8:E1:CD:76:6D:F5:E0:8D:61:6F:84:5D:6F:9C:46:9A:CE:87:8D:CC:C2:A0"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: cabtrac.com.ar\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Thu, 09 Apr 2026 23:34:54 GMT\r\nServer: Apache\r\nContent-Length: 658\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html;charset=ISO-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":658,"size_decoded":0,"mime_type":"text/html; charset=ISO-8859-1","magic":"HTML document, ASCII text","md5":"19a67eabe17b633de02e7dd290e327e9","sha1":"19c088e7f2ca54dcbb729cb04b0372da0820b2ea","sha256":"21e5c7ac0b70896b0f1fb6dad2dc7e898b894a443042d8d625b1cd9db8cf59cf","sha512":"20295025c7ec72da64e77da35384321278438303ed426a80f590e3055ad82b41a4b4c3e0d9a7cece95ab9e47b82519706d0f9404debed83cfcb58c2fa28b3d2a","ssdeep":"","tlshash":"f901498aa4d022b76981361a90807dca85e2c1ba82f14eb43c0fb493db45ef891171e9","first_seen":"2026-01-05T22:23:39.851858Z","last_seen":"2026-04-09T23:35:17.698136Z","times_seen":2,"resource_available":true,"data":null}},"time_used":1594,"timings":{"blocked":734,"dns":494,"connect":116,"send":0,"wait":127,"receive":0,"ssl":121},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-09","alert":"Sinkholed","trigger":"cabtrac.com.ar","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Audit - Open directory","verdict":"none","severity":"audit","comment":"","tags":["opendir"],"meta":null}]}}]}