{"report_id":"0e0395c0-af00-496d-81e1-e5792fb6dfb6","version":0,"status":"done","tags":["suspicious"],"date":"2026-06-20T12:23:13Z","url":{"schema":"http","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":0,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"title":"Bienvenido","dom":{"size":19850,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (983)","md5":"f21340cc1e2788cb968886d045f71431","sha1":"4652ae175cfb7139fe8f70581a31251f57798cb1","sha256":"85a93d07f3be54b120a07b2f5dc1486d9c680228251b060ab1ab21cc48990831","sha512":"0a3b8944cdad7f2456e10b6bd224059f6803e7c30d138b4deff4e7e9e09ed96c7607b945a2591bdfffc6b03ea685dbb23d6412e639ba51192fda3a61dc7d3fb0","ssdeep":"192:oU0E3ZMTjyzutTNoTyKwfm6xY6ZXp6wzvWNyRR:ogy2TyKwu+XXEwzvPRR","tlshash":"10921100edfc593a5a126c8367d16b499e6082079a1c9ffd79ec45894fcae6bccc7438","dom_hash":"domhash6aa89b08036fda28c042a0d23c771fad","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":0,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-07-25T12:23:13Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":2,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"YARAhub by abuse.ch","description":"YARAhub by abuse.ch","scan_date":"2026-06-20","alert":"Detects file containing Telegram Bot API","trigger":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"rectifyq","date":"2024-09-07","description":"Detects file containing Telegram Bot API","rule":"telegram_bot_api","yarahub_author_twitter":"@_rectifyq","yarahub_license":"CC0 1.0","yarahub_reference_md5":"9DA48D34DC999B4E05E0C6716A3B3B83","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58c9e4fe-d1e9-46ed-913c-dba943ac16d6"}},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null},{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null}]},"summary":[{"fqdn":"enlacesantander.mx2335.cfd","ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"domain_registered":"2026-06-19","domain_rank":0,"first_seen":"2026-06-20T12:23:15.251107Z","last_seen":"2026-06-20T12:23:15.251107Z","alert_count":27,"request_count":25,"received_data":1027710,"sent_data":15623,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery:3.6.0","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}]},{"fqdn":"api.telegram.org","ip":{"addr":"149.154.166.110","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"domain_registered":"2003-12-15","domain_rank":206724,"first_seen":"2015-06-25T10:09:00Z","last_seen":"2026-06-15T14:41:16.454273Z","alert_count":0,"request_count":1,"received_data":390,"sent_data":632,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.30.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null}]},"javascript":{"script":[{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"339aaaa033bd435bc3d3442976b21150","sha1":"309497f761b4649d113688cb611242810ed2a8bc","sha256":"47536a23eb95f0f1d8f00b6ef54ac4553cc05d06ddce49260dab7dc9f083296d","sha512":"65675d696c7315d55825bfd99ee02ed0d7f7a240f82d6f691e2df1d2fe4ebc6eeb4a409af3b0d0b74c7bff7700b6b141ae469071353dd9d391a5406f8c838c2f","ssdeep":"","tlshash":"3380008a08b0082a02a0a000c8c3a838002080020a0a00a228802000be808c388020c0","size":26,"data":"","first_seen":"2023-03-07T01:02:37Z","last_seen":"2026-06-24T23:29:27.451057Z","times_seen":108548,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"813f7afe12806d2df1c685b53ab49c0e","sha1":"8ebc2ee97e18dd336b670b53dbccdfb8788a5825","sha256":"ab008176ac77145e392d8392787e81c90c2592a54b1590d8779c74f956c0e46a","sha512":"2cfd9473c2bc8c0c516c30d1b03838ae0e89dc97ce4c7e105c9ae7a33e507660d7b3ece76116ca79570d95bde32d0cbf86798b49983e3e9ffe29d3c2c505cc0a","ssdeep":"","tlshash":"ee80008a08b0082a0220a00cc8e3a838002080020a0a00a228802000ba808c308000c0","size":26,"data":"","first_seen":"2023-03-07T01:02:36Z","last_seen":"2026-06-24T23:29:27.446984Z","times_seen":109151,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/jquery-3.6.0.min.js","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0732e3eabbf8aa7ce7f69eedbd07dfdd","sha1":"4cd5ddc413b3024d7b56331c0d0d0b2bd933f27f","sha256":"ce9d07500ad91ec2b524c270764ec4c9a33e78320d8d374ec400ede488f6251b","sha512":"41d24c426abcf913be59917591d906318a547661280036b098a2b1b948bcf9ff14f268b140db10956730d64a857a61b81034d888ed7f857419dee6b8d327447c","ssdeep":"1536:ejExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1vE:eIh8GgP3hujzwbhd3XvSiDQ47GKq","tlshash":"e19309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","size":89503,"data":"","first_seen":"2023-03-07T01:10:32Z","last_seen":"2026-06-24T23:26:26.132607Z","times_seen":20176,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/bootstrap.min.js","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"addf4af66877d68da719cd7257a33346","sha1":"de3e6c870216033c45ee5957e0acf58817eac8ea","sha256":"494ccfbbe7b08d90a3e82b7056cf6c361e90fcb3058b5c35459f53c692a65641","sha512":"2c14fb0ef2c566b224e9b39d69199e23014d86332e6f976244ac819c6303fce1bc5e7f6c522cbff5163402dd82d279520e10790e5bf8fbf2ffc6082b91d128d6","ssdeep":"768:P4TlSOLQenVa+Shd413pjWxkRfFdAZTVUzRWQHWxBVm7MT09XAPtThvBEwU8TtLf:PAfkVf5Lw9eEZeql6","tlshash":"3543c44a3358b8330ade44a79072474bf7255994b147806cb9bc6cde1b3dc8672b7bb8","size":59225,"data":"","first_seen":"2023-03-08T14:45:17Z","last_seen":"2026-06-23T09:57:09.181225Z","times_seen":601,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"6daab1996933f6f5d94cab3b86c5d5b8","sha1":"f831e650aea128fdb98c0c488156113758ab4bd8","sha256":"5cfe5a2b8b57e6da1042a0663ade973f4a24d9a833e4eea46bbb1d6af175380b","sha512":"b27a6a4de5baeb163b6c52cb7e41ece49837a26658d57b9a4a273e57d5b63cc9c50ab00ec1352cc305638a0734d7ac3c1af42c511f9f5958bcd3b1f8df29ddf6","ssdeep":"","tlshash":"c7c08c0e10a2a3e4280ad0782307e43471ac0eca2c24c1f07b4e2f3c0fad7ae0dc0c86","size":186,"data":"","first_seen":"2026-06-20T12:23:21.918919Z","last_seen":"2026-06-20T13:53:41.601762Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d56ce4648fe1c5b62d348781396b6c47","sha1":"7e19b0b25c93156f5da12bfb2e018df5a4000c0a","sha256":"306f5beff48866bfd3d891ad7b0fe6455c92edb7cab26afd0116112cceb73a12","sha512":"50cc29f946150af50e22d510d6e2bb38f7e9a952e4f99e16a9163fe19dfe3c99341d7942d38dbc999290dd16b365c6cdd8fc36bba0b7a3421156a5bbedb9fb1e","ssdeep":"","tlshash":"47312854faeb5541fa3330788f1b02446670849b285afc2c7c8d5ad15fac53a81fadf8","size":1681,"data":"","first_seen":"2026-06-20T12:23:21.920886Z","last_seen":"2026-06-20T13:53:41.602315Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"75404f7097d74cfd40d4df01c9bbfc90","sha1":"a83f90d6b32ec61cf7d824db74e037b0bcc9646e","sha256":"95c9e4aa02fa6bd2162d02a42e6a2659f44fdeab068c7e141cdfcc1effe0fd2b","sha512":"78abbe4b818b30193dbef926285f66e10e4eea73bb2460ec3b3a2591ed8668809c62754bc2dc6597f2d2722ece2b84c60034d7f23e5ec17f37b41194b80a0bb1","ssdeep":"","tlshash":"b601106a4fa318863893201eb30bf0abc0d694337d54e4a371ded37a0fc4a689c1a3d0","size":761,"data":"","first_seen":"2026-06-20T12:23:21.922726Z","last_seen":"2026-06-20T13:53:41.602939Z","times_seen":2,"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"YARAhub by abuse.ch","description":"YARAhub by abuse.ch","scan_date":"2026-06-20","alert":"Detects file containing Telegram Bot API","trigger":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"rectifyq","date":"2024-09-07","description":"Detects file containing Telegram Bot API","rule":"telegram_bot_api","yarahub_author_twitter":"@_rectifyq","yarahub_license":"CC0 1.0","yarahub_reference_md5":"9DA48D34DC999B4E05E0C6716A3B3B83","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58c9e4fe-d1e9-46ed-913c-dba943ac16d6"}}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/P9H9U-2ZVUT-6QA2U-WGZZD-Y2BX8","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"fa4c76a7fde62b18054cf7eb8e946012","sha1":"b20150066a879d2b78dd3d4908f4acd148ee66f8","sha256":"09ebd7f407439990aac227e70da23e1a819e8e30282928e324370805f480bec4","sha512":"d72f5d078675c7adbf6bfc1980712542a10668aec9163137a2ec70a5e117f8ffdd0f06a6c4c6636e35c04f2754f33d40c65c59d452afaa8ea4a382f24f200abd","ssdeep":"3072:1P6RsHIwj0PdUgdbs8kvdYkODdlm9AZoZXs+eSc:1msHIxHMvd8dtZoZDc","tlshash":"042419ca7681303346fe31bb713f620bf23b5e6324584060a675e5a9ac7174e9277f29","size":209939,"data":"","first_seen":"2023-03-07T01:02:36Z","last_seen":"2026-06-24T07:20:11.669079Z","times_seen":645,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0096b3a75c132c10f6a90df56192e4d7","sha1":"07cfa420d654e1531d97a9dccd23f4bede5edde7","sha256":"7e519b79026424c478dc1b72f347eb1327c9d01dc2458973bafe2690ca7d016d","sha512":"e6a302829a2b112324b04d3a0eaa094d34e38cef1cfdc1d83dabcfd540c9b6d866e661d3e55f021202164709babdf9e88685ca38dfdd52ea8eb66773fc9519ce","ssdeep":"","tlshash":"6880008a0bb0082a8220a200c8c3a838002080020a0a00a228802080ba808c308000e0","size":26,"data":"","first_seen":"2023-03-07T01:02:36Z","last_seen":"2026-06-24T23:29:27.456917Z","times_seen":109380,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"6daab1996933f6f5d94cab3b86c5d5b8","sha1":"f831e650aea128fdb98c0c488156113758ab4bd8","sha256":"5cfe5a2b8b57e6da1042a0663ade973f4a24d9a833e4eea46bbb1d6af175380b","sha512":"b27a6a4de5baeb163b6c52cb7e41ece49837a26658d57b9a4a273e57d5b63cc9c50ab00ec1352cc305638a0734d7ac3c1af42c511f9f5958bcd3b1f8df29ddf6","ssdeep":"","tlshash":"c7c08c0e10a2a3e4280ad0782307e43471ac0eca2c24c1f07b4e2f3c0fad7ae0dc0c86","size":186,"data":"","first_seen":"2026-06-20T12:23:21.918919Z","last_seen":"2026-06-20T13:53:41.601762Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d56ce4648fe1c5b62d348781396b6c47","sha1":"7e19b0b25c93156f5da12bfb2e018df5a4000c0a","sha256":"306f5beff48866bfd3d891ad7b0fe6455c92edb7cab26afd0116112cceb73a12","sha512":"50cc29f946150af50e22d510d6e2bb38f7e9a952e4f99e16a9163fe19dfe3c99341d7942d38dbc999290dd16b365c6cdd8fc36bba0b7a3421156a5bbedb9fb1e","ssdeep":"","tlshash":"47312854faeb5541fa3330788f1b02446670849b285afc2c7c8d5ad15fac53a81fadf8","size":1681,"data":"","first_seen":"2026-06-20T12:23:21.920886Z","last_seen":"2026-06-20T13:53:41.602315Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"75404f7097d74cfd40d4df01c9bbfc90","sha1":"a83f90d6b32ec61cf7d824db74e037b0bcc9646e","sha256":"95c9e4aa02fa6bd2162d02a42e6a2659f44fdeab068c7e141cdfcc1effe0fd2b","sha512":"78abbe4b818b30193dbef926285f66e10e4eea73bb2460ec3b3a2591ed8668809c62754bc2dc6597f2d2722ece2b84c60034d7f23e5ec17f37b41194b80a0bb1","ssdeep":"","tlshash":"b601106a4fa318863893201eb30bf0abc0d694337d54e4a371ded37a0fc4a689c1a3d0","size":761,"data":"","first_seen":"2026-06-20T12:23:21.922726Z","last_seen":"2026-06-20T13:53:41.602939Z","times_seen":2,"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"YARAhub by abuse.ch","description":"YARAhub by abuse.ch","scan_date":"2026-06-20","alert":"Detects file containing Telegram Bot API","trigger":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"rectifyq","date":"2024-09-07","description":"Detects file containing Telegram Bot API","rule":"telegram_bot_api","yarahub_author_twitter":"@_rectifyq","yarahub_license":"CC0 1.0","yarahub_reference_md5":"9DA48D34DC999B4E05E0C6716A3B3B83","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58c9e4fe-d1e9-46ed-913c-dba943ac16d6"}}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/wlt","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"03ecc1f0ff1bf4f2d98565cc9b6fb891","sha1":"c1f7de0d623bbad6c860d312313e049d1e7cfcbc","sha256":"f5476ed4981e03a5db5abdb47e3eb7d9b5d2d8b21c68390660c4092f17b76b23","sha512":"7c3c97b08bad3db37ec7043e3f4e8f7a82885a22d68fbe8d9f1a3613ab432eb8afa2446ca571b689943ad8c6c1af72aedbb08b6a2971f9157254d799d44df025","ssdeep":"","tlshash":"84a022fc00022ce8c0c000030cfbc0888c2b830efbc0aac0ac00ac02f32f8300b2a882","size":72,"data":"","first_seen":"2026-06-20T12:23:21.88628Z","last_seen":"2026-06-20T13:53:41.594443Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/taas","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"68b329da9893e34099c7d8ad5cb9c940","sha1":"adc83b19e793491b1c6ea0fd8b46cd9f32e592fc","sha256":"01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b","sha512":"be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09","ssdeep":"","tlshash":"c700000000000000c00000300000000030300000000000000000000000000000000000","size":1,"data":"","first_seen":"2023-03-07T01:02:54Z","last_seen":"2026-06-25T00:13:18.835576Z","times_seen":218069,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/70864923","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"97398994243cd1ab49bc45938cbb681e","sha1":"09ca9277de52c3a0d143e398b0489cf2df475f75","sha256":"74f04d3c25e50af62809e1a4467353aff4e97332258c5d1e65f74b77182a6c86","sha512":"8db00df49f3b8228300efc9b393d9511405e6df404d3f895616469e4b140cd90efdd378007f8c64554da6075f6996e4c8eb5298045d20f354b4122c3cc712ee1","ssdeep":"768:beLLkQGM8cXhhZ+/of4fD8DWo6Q/H7U3b:beLAnM8cXcof4bToW","tlshash":"b9c288e872d7ed0b678f4a83fd505afe2072857790c43247c3aeb58d16f828bd258984","size":26731,"data":"","first_seen":"2023-03-07T18:25:49Z","last_seen":"2026-06-20T13:53:41.593831Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"91e37f24be76111b93a0ff728b96cddb","sha1":"e1740ea479e156d424cb918060d779528ecc8fae","sha256":"49ef43da1c84ec34b398aaab43e8debad168559596297c7586e9c9e8239c79bf","sha512":"f6794302c65cd64c0d6fca102f0233c49b2cdcee3caaaa18f42d3a6e3a7c3f59fc72461a36069c6af967a2e8dabbca580096e87abdc36b1e1324a041e3aefe66","ssdeep":"","tlshash":"ce80008a08b0082a0220a000c8c3e8b8002080020a0a00a228802000be808c308200c0","size":26,"data":"","first_seen":"2023-03-07T01:02:35Z","last_seen":"2026-06-24T23:29:27.453631Z","times_seen":108477,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/Login.js","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0ef1e2b040b7c93509d956be0d50bec6","sha1":"69078934b4c15ab4a56a417637164a5b393c85ac","sha256":"1f86f6c46bbae70c9670abe466eff25210dfd05ec029443c81a40d290c9bb50a","sha512":"031e01e2bbeab305d0236a11f5bd8139a76aa9b8c8bc7958756c5318335e6a2a64afacc28bc953df9f854e8d2731e6662098d600441df41c8f525644ec3fbdce","ssdeep":"48:vTzjBwSPPHttH1WVWwSHj4Xxqr5KK8YpkJ55SGSKNnPV5KKUO8l8y:vzrVSM1KKMPXKK6","tlshash":"7e91be49b9ef05314573362a5a7bc3407a32055b390dfe24bdac47c94f88a2e95b17ac","size":4267,"data":"","first_seen":"2026-06-20T12:23:21.852768Z","last_seen":"2026-06-20T13:53:41.581316Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"6daab1996933f6f5d94cab3b86c5d5b8","sha1":"f831e650aea128fdb98c0c488156113758ab4bd8","sha256":"5cfe5a2b8b57e6da1042a0663ade973f4a24d9a833e4eea46bbb1d6af175380b","sha512":"b27a6a4de5baeb163b6c52cb7e41ece49837a26658d57b9a4a273e57d5b63cc9c50ab00ec1352cc305638a0734d7ac3c1af42c511f9f5958bcd3b1f8df29ddf6","ssdeep":"","tlshash":"c7c08c0e10a2a3e4280ad0782307e43471ac0eca2c24c1f07b4e2f3c0fad7ae0dc0c86","size":186,"data":"","first_seen":"2026-06-20T12:23:21.918919Z","last_seen":"2026-06-20T13:53:41.601762Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"d56ce4648fe1c5b62d348781396b6c47","sha1":"7e19b0b25c93156f5da12bfb2e018df5a4000c0a","sha256":"306f5beff48866bfd3d891ad7b0fe6455c92edb7cab26afd0116112cceb73a12","sha512":"50cc29f946150af50e22d510d6e2bb38f7e9a952e4f99e16a9163fe19dfe3c99341d7942d38dbc999290dd16b365c6cdd8fc36bba0b7a3421156a5bbedb9fb1e","ssdeep":"","tlshash":"47312854faeb5541fa3330788f1b02446670849b285afc2c7c8d5ad15fac53a81fadf8","size":1681,"data":"","first_seen":"2026-06-20T12:23:21.920886Z","last_seen":"2026-06-20T13:53:41.602315Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"75404f7097d74cfd40d4df01c9bbfc90","sha1":"a83f90d6b32ec61cf7d824db74e037b0bcc9646e","sha256":"95c9e4aa02fa6bd2162d02a42e6a2659f44fdeab068c7e141cdfcc1effe0fd2b","sha512":"78abbe4b818b30193dbef926285f66e10e4eea73bb2460ec3b3a2591ed8668809c62754bc2dc6597f2d2722ece2b84c60034d7f23e5ec17f37b41194b80a0bb1","ssdeep":"","tlshash":"b601106a4fa318863893201eb30bf0abc0d694337d54e4a371ded37a0fc4a689c1a3d0","size":761,"data":"","first_seen":"2026-06-20T12:23:21.922726Z","last_seen":"2026-06-20T13:53:41.602939Z","times_seen":2,"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"YARAhub by abuse.ch","description":"YARAhub by abuse.ch","scan_date":"2026-06-20","alert":"Detects file containing Telegram Bot API","trigger":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"rectifyq","date":"2024-09-07","description":"Detects file containing Telegram Bot API","rule":"telegram_bot_api","yarahub_author_twitter":"@_rectifyq","yarahub_license":"CC0 1.0","yarahub_reference_md5":"9DA48D34DC999B4E05E0C6716A3B3B83","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58c9e4fe-d1e9-46ed-913c-dba943ac16d6"}}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8cf91652fc7787b535b26f390f9ed9af","sha1":"d39e49793059ab3b8a97b61bac69ad2a451c8ff2","sha256":"f876a7b1e6234843f5d8487af055addd42fe6018d4f4e2f29ab08c0f08a85d94","sha512":"1a1a87797e2e0a21486a88f87573cab0910b46f7be3f68d9c04cdca6f9645f1de8af87b12ebe9bcebd52a9bd54fc3232063ea1cfa8c1f10d4f3a129ecde7de94","ssdeep":"","tlshash":"fe80008a0ab8082a0220a000c8c3a83800a080020e0a00a228802000ba808c308000c0","size":26,"data":"","first_seen":"2023-03-07T01:02:35Z","last_seen":"2026-06-24T23:29:27.452784Z","times_seen":108899,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"log","text":"12:22","filename":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","line_number":0,"column_number":0},{"level":"log","text":"Notificación enviada","filename":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","line_number":0,"column_number":0}]},"http":[{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-20T12:22:48.912Z","timestamp":1781958168912,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949 HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:48 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 4871\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=UTF-8\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"jQuery:3.6.0","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":19871,"size_decoded":5124,"mime_type":"text/html; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (983)","md5":"281bebf2d674301ff8a6ff3de142da3a","sha1":"4fa94783436526e7d1822dce474e31fe9664fc83","sha256":"2bc14783676d14cebdcb3360280244562dfc9f3c1afcc354ec7fe9d99abbdb9d","sha512":"34f39065a7d9ffc24009e65093c0ed3d4f4834aa7d9d0571ae66ac0d54f9bc19bf0c67c4aa7e8842fc90e068e3cc9ffd77171722327452f2322d3cd2b663b782","ssdeep":"192:wU0E3ZMTjyzutTNoTyGw2sJ6xY6ZXp6wzvWNyRmM:wgy2TyGw2A+XXEwzvPRmM","tlshash":"5c922200edfc493a5a126d8367d16b499e6082079a1c9ffd79ec45894fcae6bccc7438","first_seen":"2026-06-20T12:23:21.850616Z","last_seen":"2026-06-20T12:23:21.850616Z","times_seen":1,"resource_available":true,"data":null}},"time_used":835,"timings":{"blocked":-1,"dns":242,"connect":146,"send":0,"wait":150,"receive":0,"ssl":297},"alerts":{"ids":null,"analyzer":[{"sensor_name":"infosec_yara","sensor_type":"yara","title":"YARAhub by abuse.ch","description":"YARAhub by abuse.ch","scan_date":"2026-06-20","alert":"Detects file containing Telegram Bot API","trigger":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","verdict":"malware","severity":"medium","comment":"","link":"https://yaraify.abuse.ch/yarahub/","meta":{"author":"rectifyq","date":"2024-09-07","description":"Detects file containing Telegram Bot API","rule":"telegram_bot_api","yarahub_author_twitter":"@_rectifyq","yarahub_license":"CC0 1.0","yarahub_reference_md5":"9DA48D34DC999B4E05E0C6716A3B3B83","yarahub_rule_matching_tlp":"TLP:WHITE","yarahub_rule_sharing_tlp":"TLP:WHITE","yarahub_uuid":"58c9e4fe-d1e9-46ed-913c-dba943ac16d6"}},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":[{"sensor_name":"urlquery","alert":"Suspicious - Suspicious Javascript code","verdict":"suspicious","severity":"medium","comment":"","tags":["suspicious"],"meta":null}]}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/Login.js","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.010Z","timestamp":1781958170010,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/Login.js HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Mon, 04 Dec 2023 20:47:58 GMT\r\nETag: \"10ab-60bb53ba63b80-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 961\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":4267,"size_decoded":1311,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"0ef1e2b040b7c93509d956be0d50bec6","sha1":"69078934b4c15ab4a56a417637164a5b393c85ac","sha256":"1f86f6c46bbae70c9670abe466eff25210dfd05ec029443c81a40d290c9bb50a","sha512":"031e01e2bbeab305d0236a11f5bd8139a76aa9b8c8bc7958756c5318335e6a2a64afacc28bc953df9f854e8d2731e6662098d600441df41c8f525644ec3fbdce","ssdeep":"48:vTzjBwSPPHttH1WVWwSHj4Xxqr5KK8YpkJ55SGSKNnPV5KKUO8l8y:vzrVSM1KKMPXKK6","tlshash":"7e91be49b9ef05314573362a5a7bc3407a32055b390dfe24bdac47c94f88a2e95b17ac","first_seen":"2026-06-20T12:23:21.852768Z","last_seen":"2026-06-20T13:53:41.581316Z","times_seen":2,"resource_available":true,"data":null}},"time_used":754,"timings":{"blocked":602,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/cargando.css","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.011Z","timestamp":1781958170011,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/cargando.css HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Mon, 27 Nov 2023 18:01:16 GMT\r\nETag: \"36d-60b2616983300-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 315\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":877,"size_decoded":650,"mime_type":"text/css","magic":"ASCII text","md5":"28119f22e96c01e401d13ee8c2f6d19d","sha1":"7b1951a5e0e816d4e3365137e2ceb7b3dce05082","sha256":"241209027ea464400952c7ecca082973ae9e55c6848023c2aab915f42d878053","sha512":"412aaf01c0d7a62755598d39061bba3d8fa72d5a5c31bf3fdfa50c7d24e51cffe54e4c8ce3faebf9ea704250fc005e9311af400ef3148b348d841932a24a6816","ssdeep":"","tlshash":"0111e9924ad79a4eb81ff0c81ba95a04127d5087b64ecb5c7b493a48df454a8a4a3dc4","first_seen":"2026-06-20T12:23:21.854924Z","last_seen":"2026-06-20T13:53:41.600204Z","times_seen":2,"resource_available":false,"data":null}},"time_used":777,"timings":{"blocked":618,"dns":0,"connect":0,"send":0,"wait":159,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/logo.svg","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.022Z","timestamp":1781958170022,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/logo.svg HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:29:04 GMT\r\nETag: \"12c4-60b05c985e000\"\r\nAccept-Ranges: bytes\r\nContent-Length: 4804\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/svg+xml\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":4804,"size_decoded":5094,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"ece36f77b8dc5370a414b91761706c98","sha1":"cf4d127827ecb4c73b97274e7aef86ca495995bc","sha256":"5b9d38dba79260727ca75cc89eafde4a3580a79c7eba554b6c2a303a9182027e","sha512":"0ee8a46a5df137d7d538d199b0be4744b74531f3a394ad422948e6d84fa58ac12732ffea70b572059378dc69005144b6fd80c0ff64550a65858c9b40aeb1e594","ssdeep":"96:ZxcmiIRGUnInRfW8Lyf8i6FFWT9N7GE+kf78PCQ1V11sCtC/j8:ZimiBUmVc5h5+08Pr91vCr8","tlshash":"86a1a7f65b94e7d8d140f7e887126cf83a0638b63d67875887943f983b5591c8c48cd4","first_seen":"2026-06-20T12:23:21.85681Z","last_seen":"2026-06-20T13:53:41.596718Z","times_seen":2,"resource_available":false,"data":null}},"time_used":934,"timings":{"blocked":773,"dns":0,"connect":0,"send":0,"wait":161,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/SantanderMicroText.woff2","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:51.131Z","timestamp":1781958171131,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/SantanderMicroText.woff2 HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/bootstrap.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 12:29:32 GMT\r\nETag: \"8af0-60b0d5661e300\"\r\nAccept-Ranges: bytes\r\nContent-Length: 35568\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: font/woff2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":35568,"size_decoded":35856,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), CFF, length 35568, version 0.0","md5":"eca13acbbce7573feea90e6bfe9ab498","sha1":"4019d2821c031fdd2b97f788772632cf59ff031f","sha256":"8bd090480a7497b1cf0690275c147ae2184878d3ff5d48bbb31ae56ee217c649","sha512":"6fe6c79347af6d6822313ef6e613ebdc01abd71040d009cceab36c04cd385a08de447d0987405066173664277791e8fcb73bb3f7de18f700eb1fd0caf9744d6b","ssdeep":"768:mWs7mm4CqKOHzx2tqMkAy0wcoweKZMhI53QWhxt9rNBk:6rfHXtpkAyRcowXWhU/t9rk","tlshash":"e8f2017466c610c235acdcb1d3dca5eb71ca08be10aa00167b83b752ce87e605d5c5ed","first_seen":"2023-04-22T09:55:24Z","last_seen":"2026-06-22T08:44:42.399947Z","times_seen":132,"resource_available":false,"data":null}},"time_used":147,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":146,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/boton-info.svg?v=1","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:51.142Z","timestamp":1781958171142,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/boton-info.svg?v=1 HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/bootstrap.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 12:28:10 GMT\r\nETag: \"340-60b0d517eaa80\"\r\nAccept-Ranges: bytes\r\nContent-Length: 832\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: image/svg+xml\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":832,"size_decoded":1120,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"d0ac47417f0f228d9542cfd76009f4e2","sha1":"c8a1705c36a7c9b91ba5c347ed0054cae2fd1fed","sha256":"3d31b515615e2ce83f417f0303fab52beef1680c3dfa9a5b6cc15c56bf3f903b","sha512":"be4f13e76118d5e8b61b06be7b703de2d3033e3cbef8d75fd9bd18b9b0761c9b78d3ecd5497e539b6659850f4fbf251dc3f9323406c11154e79233c18c2bc9c5","ssdeep":"","tlshash":"7101c2a2e1d8566fd502c330913e61b732c961b87008a10961b3eca5fd5e0bd0ffc855","first_seen":"2026-06-20T12:23:21.860765Z","last_seen":"2026-06-20T13:53:41.595647Z","times_seen":2,"resource_available":false,"data":null}},"time_used":264,"timings":{"blocked":112,"dns":0,"connect":0,"send":0,"wait":152,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/Default.css","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:49.992Z","timestamp":1781958169992,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/Default.css HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:48 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:28:44 GMT\r\nETag: \"6ee-60b05c854b300-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 703\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1774,"size_decoded":1038,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"028e8df169a98a3d2469a1fc0f1f773c","sha1":"0f45ce4b65dfb1fb51d9effc27a3a5543b7605ca","sha256":"3718cbf46ae8bc784fbc20a7216e20e09113cedcefda57520de02c9fa6a5d244","sha512":"1558e7e36eb202dad1a3eca108ef19f21fbaa1305fdd34a1cb73d6b431974f8bbf497f420c9c4324a9c9c1129fb52136f2b73af0bd0b9bc4bd1ee71779644661","ssdeep":"","tlshash":"e8313218e69e204af32375e2ff304f49ff94c8e76f1f056474e2622ca5901b866921cd","first_seen":"2026-06-20T12:23:21.867882Z","last_seen":"2026-06-20T13:53:41.599624Z","times_seen":2,"resource_available":false,"data":null}},"time_used":147,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":147,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/P9H9U-2ZVUT-6QA2U-WGZZD-Y2BX8","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.003Z","timestamp":1781958170003,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/P9H9U-2ZVUT-6QA2U-WGZZD-Y2BX8 HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:48 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:28:52 GMT\r\nETag: \"33413-60b05c8cec500\"\r\nAccept-Ranges: bytes\r\nContent-Length: 209939\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":209939,"size_decoded":210203,"mime_type":"text/plain","magic":"JavaScript source, ASCII text, with very long lines (65103)","md5":"fa4c76a7fde62b18054cf7eb8e946012","sha1":"b20150066a879d2b78dd3d4908f4acd148ee66f8","sha256":"09ebd7f407439990aac227e70da23e1a819e8e30282928e324370805f480bec4","sha512":"d72f5d078675c7adbf6bfc1980712542a10668aec9163137a2ec70a5e117f8ffdd0f06a6c4c6636e35c04f2754f33d40c65c59d452afaa8ea4a382f24f200abd","ssdeep":"3072:1P6RsHIwj0PdUgdbs8kvdYkODdlm9AZoZXs+eSc:1msHIxHMvd8dtZoZDc","tlshash":"042419ca7681303346fe31bb713f620bf23b5e6324584060a675e5a9ac7174e9277f29","first_seen":"2023-03-07T01:02:36Z","last_seen":"2026-06-24T07:20:11.669079Z","times_seen":645,"resource_available":true,"data":null}},"time_used":723,"timings":{"blocked":-1,"dns":0,"connect":146,"send":0,"wait":147,"receive":440,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/candado.svg","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.023Z","timestamp":1781958170023,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/candado.svg HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:29:04 GMT\r\nETag: \"66e-60b05c985e000\"\r\nAccept-Ranges: bytes\r\nContent-Length: 1646\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/svg+xml\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":1646,"size_decoded":1935,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"efcd463ee967c3ce0e0ba37a40e7ac2c","sha1":"4ee53f36d1c76cdaae15b21dfc4effec40c89b41","sha256":"ad7d80831f20fcf86d14ea3e01416d571651c7b1b599b07e834e335a473707f2","sha512":"42702ee7b02e77f5d163d6e38e734c7005fdb19fe48bd0dee1d1671625146c91259f6fc7ecac00d991fab3a832cc06d440688f1f067b5805e5920498c6a116be","ssdeep":"","tlshash":"2f31f1f882885bd1710f4bedc499a974f47b20fdbe2ac55100859c5437eb1798e4cdca","first_seen":"2026-06-20T12:23:21.875296Z","last_seen":"2026-06-20T13:53:41.579553Z","times_seen":2,"resource_available":false,"data":null}},"time_used":919,"timings":{"blocked":772,"dns":0,"connect":0,"send":0,"wait":147,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/Key.svg","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.024Z","timestamp":1781958170024,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/Key.svg HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:29:04 GMT\r\nETag: \"5af-60b05c985e000\"\r\nAccept-Ranges: bytes\r\nContent-Length: 1455\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: image/svg+xml\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1455,"size_decoded":1744,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a9771c4eca7e0b2703a1314d8a0bac97","sha1":"a3eb963f8a1d62cbbd48c2f3c1c687302fa04ba0","sha256":"6aabaeaf8ebca1f831c320f9a24f7e5757c3069292855dcdfd4bcde5615d5ead","sha512":"0937d455d8cb05bc4fde7b9a6c8ee3234b540538bdafcad4565ec819641f051b041acca88d5396a45e4088e72f018215ce5f84b0f87de3391510334c63d07a42","ssdeep":"","tlshash":"d93152b151c896d4fa0efbf0d811a7b7bc1a28f1ff84c6b0c8926c61eb1540d9889d28","first_seen":"2026-06-20T12:23:21.878596Z","last_seen":"2026-06-20T13:53:41.582586Z","times_seen":2,"resource_available":false,"data":null}},"time_used":919,"timings":{"blocked":772,"dns":0,"connect":0,"send":0,"wait":147,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/SantanderHeadline-Bold.woff2","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:51.129Z","timestamp":1781958171129,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/SantanderHeadline-Bold.woff2 HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/bootstrap.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 12:29:22 GMT\r\nETag: \"bf08-60b0d55c94c80\"\r\nAccept-Ranges: bytes\r\nContent-Length: 48904\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nContent-Type: font/woff2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":48904,"size_decoded":49192,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 48904, version 0.0","md5":"4e0cfe389c551d06f41e8c23364a8a3f","sha1":"cee0a328210443f9a58121d5f3f72a17525a2b8b","sha256":"982f6cdb8fad5b56e805fddf9e34421c17bdbd9b3ac127e944a30ad033765ae7","sha512":"5b1c552f0f68417ff975cdd05098ff39141a87c19f5a3fb3f320f1b714d9ec2ee7a7bbce45f25adacecd6f83faec47a4297cea062d48bffb51462542bfb03c5e","ssdeep":"768:w8bTCv9YRcfNb55rawWzCHwebRAb5i3QSJZqdQsAFacfw9V4LEFn1FciydSgzJ/R:o99fZe/ORAb51wlsGhDanfci0f","tlshash":"ed23d0e452bbe9d6fc9f017d61313acbaa03a936f9d0dcf5c374208c8855e8499205af","first_seen":"2023-12-27T05:54:53Z","last_seen":"2026-06-20T13:53:41.597533Z","times_seen":45,"resource_available":false,"data":null}},"time_used":147,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":146,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/icon-contact.svg?v=1","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:51.141Z","timestamp":1781958171141,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/icon-contact.svg?v=1 HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/bootstrap.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 12:26:32 GMT\r\nETag: \"cb1-60b0d4ba74e00\"\r\nAccept-Ranges: bytes\r\nContent-Length: 3249\r\nKeep-Alive: timeout=5, max=96\r\nConnection: Keep-Alive\r\nContent-Type: image/svg+xml\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3249,"size_decoded":3538,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"141e42e6adcbb5c1c86337f5cd127537","sha1":"9d846000429f71a9c995e946520c5ca63669d3a9","sha256":"1a0da3d5d42fecea2c0642075f9f7209a0d7d0765cdc3268e192717fd17db8e2","sha512":"743baa3f2889230f96b70392e813d5068d5ef649fbe6b0e635fbe4787613ba08df580741d26858b8997f5e56d981b3aeb4272ff6659692712f57cf010240bf15","ssdeep":"","tlshash":"db6141ebe2d8a6d0d409ebb4591772fa332738ff3f76c1404ad69d01d62116d948998c","first_seen":"2026-06-20T12:23:21.88148Z","last_seen":"2026-06-20T13:53:41.591045Z","times_seen":2,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":98,"dns":0,"connect":0,"send":0,"wait":147,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/CodCliente.css","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:49.998Z","timestamp":1781958169998,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/CodCliente.css HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:48 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:28:50 GMT\r\nETag: \"260-60b05c8b04080-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 248\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":608,"size_decoded":584,"mime_type":"text/css","magic":"ASCII text, with very long lines (608), with no line terminators","md5":"2bff90ec3dbb30b71faf8aed756d7bb7","sha1":"f8c2f7aff5cac4d532e6dcb36df9bcf84359b753","sha256":"e494a1d164e6cb4787bbe16b2ee57bd5a75983ba1268f8ffa5dd2bb0f9ad194d","sha512":"bf666858f21b0157efd79bb2f7e3ab538f045858646be6873aa27f09801d2dbf726c9fd1e15164c9b77af9822ebfb39f92bd7ab499393a4b5f062b31135249d3","ssdeep":"","tlshash":"e0f078026d8f9ca0d0880c633356be1558582f0a140fffe92cba88488dcd02bab21768","first_seen":"2026-06-20T12:23:21.882911Z","last_seen":"2026-06-20T13:53:41.585001Z","times_seen":2,"resource_available":false,"data":null}},"time_used":458,"timings":{"blocked":-1,"dns":0,"connect":147,"send":0,"wait":148,"receive":0,"ssl":163},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/70864923","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.005Z","timestamp":1781958170005,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/70864923 HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:48 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:28:52 GMT\r\nETag: \"686b-60b05c8cec500\"\r\nAccept-Ranges: bytes\r\nContent-Length: 26731\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":26731,"size_decoded":26994,"mime_type":"text/plain","magic":"JavaScript source, ASCII text, with very long lines (14360)","md5":"97398994243cd1ab49bc45938cbb681e","sha1":"09ca9277de52c3a0d143e398b0489cf2df475f75","sha256":"74f04d3c25e50af62809e1a4467353aff4e97332258c5d1e65f74b77182a6c86","sha512":"8db00df49f3b8228300efc9b393d9511405e6df404d3f895616469e4b140cd90efdd378007f8c64554da6075f6996e4c8eb5298045d20f354b4122c3cc712ee1","ssdeep":"768:beLLkQGM8cXhhZ+/of4fD8DWo6Q/H7U3b:beLAnM8cXcof4bToW","tlshash":"b9c288e872d7ed0b678f4a83fd505afe2072857790c43247c3aeb58d16f828bd258984","first_seen":"2023-03-07T18:25:49Z","last_seen":"2026-06-20T13:53:41.593831Z","times_seen":5,"resource_available":true,"data":null}},"time_used":620,"timings":{"blocked":301,"dns":0,"connect":0,"send":0,"wait":160,"receive":159,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/wlt","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.008Z","timestamp":1781958170008,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/wlt HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:29:00 GMT\r\nETag: \"48-60b05c948d700\"\r\nAccept-Ranges: bytes\r\nContent-Length: 72\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":72,"size_decoded":329,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"03ecc1f0ff1bf4f2d98565cc9b6fb891","sha1":"c1f7de0d623bbad6c860d312313e049d1e7cfcbc","sha256":"f5476ed4981e03a5db5abdb47e3eb7d9b5d2d8b21c68390660c4092f17b76b23","sha512":"7c3c97b08bad3db37ec7043e3f4e8f7a82885a22d68fbe8d9f1a3613ab432eb8afa2446ca571b689943ad8c6c1af72aedbb08b6a2971f9157254d799d44df025","ssdeep":"","tlshash":"84a022fc00022ce8c0c000030cfbc0888c2b830efbc0aac0ac00ac02f32f8300b2a882","first_seen":"2026-06-20T12:23:21.88628Z","last_seen":"2026-06-20T13:53:41.594443Z","times_seen":2,"resource_available":true,"data":null}},"time_used":725,"timings":{"blocked":579,"dns":0,"connect":0,"send":0,"wait":146,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/SantanderText-Regular.woff2","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:51.133Z","timestamp":1781958171133,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/SantanderText-Regular.woff2 HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/bootstrap.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 12:29:56 GMT\r\nETag: \"7bf4-60b0d57d01900\"\r\nAccept-Ranges: bytes\r\nContent-Length: 31732\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: font/woff2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":31732,"size_decoded":32020,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 31732, version 1.0","md5":"fb09128890b8554e44eaf4710aeb4c15","sha1":"cea6d320f472d7b4d84a708030a57ba0568c6eee","sha256":"5c444cc35b67d5d43c90f5fb4c1e40e6cb4b89b67f0ba17d9c54c8c3467799a3","sha512":"b3bc7d6e52f6cfca9811eb3ee0c8c58916365e409c8f1d9c791cea945e134fb95b0c31aad691b8e5d7fd43c810786e8d0e92b47a2a22383a3a38879bb499d02c","ssdeep":"768:YXUOVMZdcTzC3zn7RhEzkzt/Fc78ZKfRTsJQBEA:YXUOmvtEzkxNcQZKfRTs2BEA","tlshash":"32e2f1da238aeea4050be9349ab3b25451245bcf9bbff4649af5415cf8e10380177ee4","first_seen":"2026-01-10T00:39:30.250696Z","last_seen":"2026-06-20T13:53:41.598084Z","times_seen":10,"resource_available":false,"data":null}},"time_used":146,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":146,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/bootstrap.css","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:49.994Z","timestamp":1781958169994,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/bootstrap.css HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:48 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 12:32:22 GMT\r\nETag: \"408db-60b0d6083e180-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 39309\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":264411,"size_decoded":39649,"mime_type":"text/css","magic":"ASCII text, with very long lines (928), with CRLF line terminators","md5":"1d7e0aaad615cf7e032fcab0c9a0c5f6","sha1":"a9200a4f349b34a1c9b5ec10ad44e025d5b040ca","sha256":"7014407be770474bc376053b325b8da31280f18dd12be0615fac599055a0a4d6","sha512":"3150aae497029b7dad24dd99225943435e6a17674b699168889b8c97fb74ac560543fae1217bfdf8a3969073ce762186d6ae3e2dd8b7513f6e1b934db2bc7971","ssdeep":"1536:auZQc8iGAQeibCcL5bQkaRuz/2dHmTwv0278zrCFL6dG:aKQeimc1dagu0t5G","tlshash":"57449599eb0230836233dbb8a7a15952ff153073ca064979bbdd66804fb846c5672fcd","first_seen":"2026-06-20T12:23:21.891938Z","last_seen":"2026-06-20T13:53:41.583488Z","times_seen":2,"resource_available":false,"data":null}},"time_used":745,"timings":{"blocked":-1,"dns":0,"connect":158,"send":0,"wait":167,"receive":271,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/icon-alert.svg","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.026Z","timestamp":1781958170026,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/icon-alert.svg HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Mon, 04 Dec 2023 20:36:36 GMT\r\nETag: \"29d-60bb512ffbd00\"\r\nAccept-Ranges: bytes\r\nContent-Length: 669\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: image/svg+xml\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":669,"size_decoded":957,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a57ad21f758a1324d759187a68384867","sha1":"4ed3f147a614cf895457eeb6d8670c2193542bae","sha256":"b065478a3ed911a74c3c7bb15000aac60e9a63ac84a6473d1675f95df7ac2e7c","sha512":"46876541e2aafe65f2c301823ec21bb6e2cdb862646813de156cfa0ad6a8205d624abc25b3bb97ece4023e250ff977f4fa54b37f9550743dda7d48766a7ea9a1","ssdeep":"","tlshash":"380126f163cc4186b29f93a5983e425582af30383154526911bddaf5b85f2a09fccc94","first_seen":"2026-06-20T12:23:21.895134Z","last_seen":"2026-06-20T13:53:41.580419Z","times_seen":2,"resource_available":false,"data":null}},"time_used":918,"timings":{"blocked":772,"dns":0,"connect":0,"send":0,"wait":146,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/cargando.gif","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.021Z","timestamp":1781958170021,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/cargando.gif HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sat, 21 Nov 2020 12:59:00 GMT\r\nETag: \"224e5-5b49d8652ed00\"\r\nAccept-Ranges: bytes\r\nContent-Length: 140517\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/gif\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":140517,"size_decoded":140806,"mime_type":"image/gif","magic":"GIF image data, version 89a, 125 x 125","md5":"87260f6120f58d99daea57788135e995","sha1":"c4e2504abb4abfe00ac4344108bcd16384753b1e","sha256":"31baf902f57559bf1cddc32fd2f3b982656b93cf88443a8776632edc12132758","sha512":"5bb6d2ec0f12c99127d06f4580dfaa9763ea868d21ca2c2446c05f91c573f7e8a8fbd749cb8d71e644f1a77d14e97fddce5987d674db834e94d41d7eba663f79","ssdeep":"3072:h2SahmvSo3kA2y05hoaRCraZ5scJcJ01Uzbfy/hA9RRtnMoP3F:0Sa2SM9q5hUu5scJcGky/i3fMofF","tlshash":"bfd3ad77d16c18a9c10236f0396e202f583e08ada577cd36b8e8fa2371415bb5dccea4","first_seen":"2024-08-20T07:11:21.704336Z","last_seen":"2026-06-20T13:53:41.598903Z","times_seen":3,"resource_available":false,"data":null}},"time_used":1229,"timings":{"blocked":772,"dns":0,"connect":0,"send":0,"wait":153,"receive":304,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/ttr.svg","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.025Z","timestamp":1781958170025,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/ttr.svg HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:29:04 GMT\r\nETag: \"9612-60b05c985e000\"\r\nAccept-Ranges: bytes\r\nContent-Length: 38418\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: image/svg+xml\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":38418,"size_decoded":38709,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"a3df7891495d27455e513fdc330b66c2","sha1":"d438ed811e7aa3876261666cedfb584713b57b43","sha256":"a3564b3b99482a45fc6fb346765d31ef1f93dcda44a9d9b4b0d1c89a69d8f22e","sha512":"93208d3e6fe7b291b4ed38a48d2b76be2787c6b99b8abf4539bc26beab0657d280b1712142ea50a124d329b0ea48ed091a8d8bd72afbe033b11ca5a343ade402","ssdeep":"768:VbmUNEaglvJwj9byL5TXP8ZA3yk85sgahgUmKPc:9qjo","tlshash":"060343ec2b723be5ddd5d2debe5641ec792bd0735a818b18c218cf383a43868c855b91","first_seen":"2026-06-20T12:23:21.900879Z","last_seen":"2026-06-20T13:53:41.586769Z","times_seen":2,"resource_available":false,"data":null}},"time_used":1216,"timings":{"blocked":772,"dns":0,"connect":0,"send":0,"wait":150,"receive":294,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/jquery-3.6.0.min.js","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:49.995Z","timestamp":1781958169995,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/jquery-3.6.0.min.js HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:48 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:28:46 GMT\r\nETag: \"15d9f-60b05c8733780-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 30908\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":89503,"size_decoded":31262,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65446), with CRLF line terminators","md5":"0732e3eabbf8aa7ce7f69eedbd07dfdd","sha1":"4cd5ddc413b3024d7b56331c0d0d0b2bd933f27f","sha256":"ce9d07500ad91ec2b524c270764ec4c9a33e78320d8d374ec400ede488f6251b","sha512":"41d24c426abcf913be59917591d906318a547661280036b098a2b1b948bcf9ff14f268b140db10956730d64a857a61b81034d888ed7f857419dee6b8d327447c","ssdeep":"1536:ejExXUqJnxDjoXEZxkMV4QYSt0zvDL6gP3h8cApwEIOzVTB/UjPazMdLiX4mQ1vE:eIh8GgP3hujzwbhd3XvSiDQ47GKq","tlshash":"e19309ddb2c6702257a720ba007f510bf236199d6c4d8450f169d8eabc78a4e827bf7d","first_seen":"2023-03-07T01:10:32Z","last_seen":"2026-06-24T23:26:26.132607Z","times_seen":20176,"resource_available":true,"data":null}},"time_used":602,"timings":{"blocked":-1,"dns":0,"connect":146,"send":0,"wait":158,"receive":146,"ssl":152},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/seguridad.css","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.006Z","timestamp":1781958170006,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/seguridad.css HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:48 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:28:52 GMT\r\nETag: \"cd9-60b05c8cec500-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 1085\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":3289,"size_decoded":1421,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"60757885167629f73e79afbb094e29be","sha1":"e5f21d77a22960d7b64255701c6cd613d85a4df2","sha256":"a86a4fd3f42e99ac7303f14d54c20e1352317f698f4471ad4a10b8a466d1a71f","sha512":"aab8883f9b10ee69d93539f8b972bd59f2ebf609ba61a85aa2f33f04db4bda8e2311c23dab94660350ddc0d14eb2d2c167588de68b4fdccaa5a775142a63e064","ssdeep":"","tlshash":"946100122f622518c11fa1e3c4a377b9ef2f64539613a5ead5d13c19cb8b18f267660c","first_seen":"2026-06-20T12:23:21.905915Z","last_seen":"2026-06-20T13:53:41.58597Z","times_seen":2,"resource_available":false,"data":null}},"time_used":586,"timings":{"blocked":438,"dns":0,"connect":0,"send":0,"wait":148,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/taas","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:50.009Z","timestamp":1781958170009,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/taas HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:29:00 GMT\r\nETag: \"1-60b05c948d700\"\r\nAccept-Ranges: bytes\r\nContent-Length: 1\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]},{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":1,"size_decoded":256,"mime_type":"text/plain","magic":"very short file (no magic)","md5":"68b329da9893e34099c7d8ad5cb9c940","sha1":"adc83b19e793491b1c6ea0fd8b46cd9f32e592fc","sha256":"01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b","sha512":"be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09","ssdeep":"","tlshash":"c700000000000000c00000300000000030300000000000000000000000000000000000","first_seen":"2023-03-07T01:02:54Z","last_seen":"2026-06-25T00:13:18.835576Z","times_seen":218069,"resource_available":true,"data":null}},"time_used":732,"timings":{"blocked":585,"dns":0,"connect":0,"send":0,"wait":147,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.telegram.org/bot8783731678:AAHWVDAbF9X4J4ngyS3oUYYBXyUpxaHwPE4/sendMessage?chat_id=-5159715708%22\u0026text=Usuario%20En%20Linea%20Santander%20Enlace","fqdn":"api.telegram.org","domain":"telegram.org","tld":"org"},"ip":{"addr":"149.154.166.110","port":443,"asn":62041,"as":"Telegram Messenger Inc","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:51.125Z","timestamp":1781958171125,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"api.telegram.org","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Tue, 11 Nov 2025 15:14:09 GMT","end":"Sun, 13 Dec 2026 15:14:09 GMT"},"fingerprint":{"sha1":"EC:27:13:72:1E:6C:94:9F:47:59:A4:24:4F:AB:9B:02:E3:6E:54:41","sha256":"64:47:03:9A:C9:ED:B9:03:8C:07:6E:AA:3D:BF:75:4B:4C:C1:4E:C1:A5:8C:83:2D:3E:FD:0C:E7:F7:82:C2:71"}}},"request":{"raw":"POST /bot8783731678:AAHWVDAbF9X4J4ngyS3oUYYBXyUpxaHwPE4/sendMessage?chat_id=-5159715708%22\u0026text=Usuario%20En%20Linea%20Santander%20Enlace HTTP/1.1\r\nHost: api.telegram.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://enlacesantander.mx2335.cfd/\r\nOrigin: https://enlacesantander.mx2335.cfd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=4\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nContent-Length: 0\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 400 \r\nserver: nginx/1.30.1\r\ndate: Sat, 20 Jun 2026 12:22:51 GMT\r\ncontent-type: application/json\r\ncontent-length: 56\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Content-Length,Content-Type,Date,Server,Connection\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"400","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx:1.30.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":56,"size_decoded":390,"mime_type":"application/json","magic":"JSON text data","md5":"d948d5845276032d39194409db9ad97b","sha1":"475fe4e71224df85d494e34e0cb8ed799afcdb0d","sha256":"a0a1e0f24b392c6da875c10977d169497a47f669b7e671e62330e125a56721fb","sha512":"3e538a78d85dc32eb47db705c97d627ed8851f6dd87904e2e39aa1d5357cdeaea2a7746fc2ccddbde9bcbcab66ddcceff4ab5cf8db169c49e0f81c592104c67f","ssdeep":"","tlshash":"22900244098ed56744da11605935954855b756b8641964404d95611d56421ea58f240a","first_seen":"2023-07-28T20:34:41Z","last_seen":"2026-06-24T18:53:19.39319Z","times_seen":430,"resource_available":true,"data":null}},"time_used":83,"timings":{"blocked":-1,"dns":5,"connect":23,"send":0,"wait":23,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/SantanderText-Bold.woff2","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:51.134Z","timestamp":1781958171134,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/SantanderText-Bold.woff2 HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: identity\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/bootstrap.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:49 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 12:29:40 GMT\r\nETag: \"7c6c-60b0d56dbf500\"\r\nAccept-Ranges: bytes\r\nContent-Length: 31852\r\nKeep-Alive: timeout=5, max=97\r\nConnection: Keep-Alive\r\nContent-Type: font/woff2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":31852,"size_decoded":32140,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 31852, version 1.0","md5":"4c3634b6ac12022419385d362b1a321e","sha1":"abede469081fe1fcac06128ffede3e77c764e351","sha256":"646d20d5a2d84ccde30a23b0dd08800fcd1ef45f5e7d63e93a23a09271e38ccc","sha512":"63bbe6c183abc9fff9e7090f41fd6c7eb4c4820e19fce372f764d45bedfc46610b52e4ef6d224cc592bde5f7e5a607445724fbb654356c2f2750917a3ef470c6","ssdeep":"768:R1khtlV50uunGyX8AuKYd4f7LSPBN/FVsy:RunSGyVuKyG7+ZN/FVZ","tlshash":"a3e2f14c64bc0cbb9d5c7c5feb24a6d9f810a0205f2e57c36f23523d3a29a54a30599c","first_seen":"2026-06-20T12:23:21.911886Z","last_seen":"2026-06-20T13:53:41.590048Z","times_seen":2,"resource_available":false,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":159,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"enlacesantander.mx2335.cfd/LOGBET_ENS/enlace_files/bootstrap.min.js","fqdn":"enlacesantander.mx2335.cfd","domain":"mx2335.cfd","tld":"cfd"},"ip":{"addr":"74.48.28.153","port":443,"asn":35916,"as":"MULTA-ASN1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949","date":"2026-06-20T12:22:49.996Z","timestamp":1781958169996,"http_version":"HTTP/1.1","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"enlacesantander.mx2335.cfd","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Fri, 19 Jun 2026 20:48:16 GMT","end":"Thu, 17 Sep 2026 20:48:15 GMT"},"fingerprint":{"sha1":"9D:E4:76:39:73:8D:E9:E5:B4:F7:75:F3:94:05:7C:24:96:F8:1F:A3","sha256":"36:2B:BB:A6:07:72:8E:D2:6B:C0:F9:91:6F:E4:D4:44:08:9C:C7:6E:C1:06:CD:B8:92:45:CB:5B:93:C2:5B:36"}}},"request":{"raw":"GET /LOGBET_ENS/enlace_files/bootstrap.min.js HTTP/1.1\r\nHost: enlacesantander.mx2335.cfd\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://enlacesantander.mx2335.cfd/LOGBET_ENS/enlace.php?dse_operationName=login\u0026dse_nextEventName=start\u0026dse_processorState=initial\u0026nowCheckingCookies=1624361310949\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 20 Jun 2026 12:22:48 GMT\r\nServer: Apache/2.4.41 (Ubuntu)\r\nLast-Modified: Sun, 26 Nov 2023 03:28:46 GMT\r\nETag: \"e759-60b05c8733780-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 16369\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server:2.4.41","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":59225,"size_decoded":16722,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (58940), with CRLF line terminators","md5":"addf4af66877d68da719cd7257a33346","sha1":"de3e6c870216033c45ee5957e0acf58817eac8ea","sha256":"494ccfbbe7b08d90a3e82b7056cf6c361e90fcb3058b5c35459f53c692a65641","sha512":"2c14fb0ef2c566b224e9b39d69199e23014d86332e6f976244ac819c6303fce1bc5e7f6c522cbff5163402dd82d279520e10790e5bf8fbf2ffc6082b91d128d6","ssdeep":"768:P4TlSOLQenVa+Shd413pjWxkRfFdAZTVUzRWQHWxBVm7MT09XAPtThvBEwU8TtLf:PAfkVf5Lw9eEZeql6","tlshash":"3543c44a3358b8330ade44a79072474bf7255994b147806cb9bc6cde1b3dc8672b7bb8","first_seen":"2023-03-08T14:45:17Z","last_seen":"2026-06-23T09:57:09.181225Z","times_seen":601,"resource_available":true,"data":null}},"time_used":627,"timings":{"blocked":-1,"dns":0,"connect":152,"send":0,"wait":160,"receive":152,"ssl":163},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-06-20","alert":"Sinkholed","trigger":"enlacesantander.mx2335.cfd","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}