{"report_id":"122ceb29-b778-4ceb-ba38-9d9ee0550f71","version":6,"status":"done","tags":[],"date":"2026-01-10T16:38:11Z","url":{"schema":"http","addr":"bbvaallianzatulado.com/","fqdn":"bbvaallianzatulado.com","domain":"bbvaallianzatulado.com","tld":"com"},"ip":{"addr":"54.155.102.133","port":0,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"final":{"url":{"schema":"https","addr":"bbvaallianzatulado.com/","fqdn":"bbvaallianzatulado.com","domain":"bbvaallianzatulado.com","tld":"com"},"title":"BBVA Allianz Seguros - Ayudas","dom":{"size":5687,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (327)","md5":"a122ac802bfe399b9d52829ea4ae1026","sha1":"bc29894e8f3010acc4eca1ae6b061b93b2f00fcc","sha256":"1f27a2f5bc42c15a67bc5708373a890949fcf954d405f945e6551765888a51ee","sha512":"58a340d0563693da412f0d651c28fb0127be1cd582769fe0d8cf7d9041009e816fb4ca98192078cf30c820274bfedfcddf03cacc43b3d4b3291798b2a4623e51","ssdeep":"48:5uq7rcacN2ewNqr0S/fRg4fa2c2+c5UwXr/9q6SuEN2jHDoigL0zsucBa3M23rfy:v7If62N/+OXqO2Ba827kSWL","tlshash":"c5c1b72125c9cc7a8b835a717990830d3c6ac563d505b8a0f5ec1528cfe2fc99e3b36c","dom_hash":"domhashaa606eef366491b0b1c4edade6f4494c","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"bbvaallianzatulado.com/","fqdn":"bbvaallianzatulado.com","domain":"bbvaallianzatulado.com","tld":"com"},"ip":{"addr":"54.155.102.133","port":0,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-02-14T16:38:11Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"bbvaallianzatulado.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"bbvaallianzatulado.com","ip":{"addr":"54.155.102.133","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2021-01-23T21:11:32Z","last_seen":"2023-02-21T01:50:38Z","alert_count":6,"request_count":6,"received_data":564132,"sent_data":3018,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"bbvaallianzatulado.com/","fqdn":"bbvaallianzatulado.com","domain":"bbvaallianzatulado.com","tld":"com"},"ip":{"addr":"54.155.102.133","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"introduction_type":"scriptElement","is_inline":true,"md5":"3c604fc97cd860a65c1e9222698aed59","sha1":"7cf3ac9453071b7dca7c25233287cf68ad0af7fa","sha256":"0858ad30b4aabc7dd6f36390ff805fbb67236a83331ba8445a9d49806a287884","sha512":"2797148141f6eb092f9956b079437ac42210981bb16bd3878705b5c7d7be2993ca8fbaf3e70e7a6e81edb17c23cfdd587008709e17d049a35b194c2948760243","ssdeep":"","tlshash":"93019bf3359298794fde3bab205143c97869d512bd223592cc6c1435a574f46e03ad50","size":777,"data":"","first_seen":"2026-01-10T16:38:12.814424Z","last_seen":"2026-01-10T16:38:12.814424Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bbvaallianzatulado.com/xlibs/allianz_general.js","fqdn":"bbvaallianzatulado.com","domain":"bbvaallianzatulado.com","tld":"com"},"ip":{"addr":"54.155.102.133","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"introduction_type":"scriptElement","is_inline":false,"md5":"ceaabe9994c7010075a21e5a2eefc922","sha1":"5ac8a031a029707287cba385ee7fb91fadcbb72f","sha256":"d4e8509f57b38258646b603635969a11450799520d246551e241c83fbb57a48e","sha512":"fdd120c72bc7bcd827d9bb4aeca9910169b35009300660b7742e696d132dbbc2622322fcb0b3c086bf3d969b59e665a71c11f75b208cab7f5f248beec24efef3","ssdeep":"192:M5dthZ/l7vSbjnu14P4AgJTX/8B+pQIOwmbwx:s7h/7qnnNP8ai","tlshash":"662281d67b0d00ed13e1232546394918de78c4775572c4e4f9ace0e4bb74d4a0bfaba9","size":10367,"data":"","first_seen":"2026-01-10T16:38:12.807036Z","last_seen":"2026-01-10T16:38:12.807036Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"bbvaallianzatulado.com/ximg/image_cabecera.png","fqdn":"bbvaallianzatulado.com","domain":"bbvaallianzatulado.com","tld":"com"},"ip":{"addr":"54.155.102.133","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbvaallianzatulado.com/","date":"2026-01-10T16:37:49.050Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbvaallianzatulado.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 28 Nov 2025 10:57:25 GMT","end":"Sat, 28 Nov 2026 10:14:01 GMT"},"fingerprint":{"sha1":"D0:8D:3F:58:AB:D4:B0:F2:FA:C7:C8:14:00:1C:20:6C:89:3C:84:35","sha256":"EF:9F:BB:5F:1E:9A:8B:A8:53:B7:18:E5:C8:01:CC:1B:45:80:5C:88:BE:13:57:0C:AE:73:CC:8F:AE:76:60:D8"}}},"request":{"raw":"GET /ximg/image_cabecera.png HTTP/1.1\r\nHost: bbvaallianzatulado.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbvaallianzatulado.com/\r\nCookie: PHPSESSID=d189c9b8a3637a560899437584190e43\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 10 Jan 2026 16:37:49 GMT\r\nServer: Apache\r\nLast-Modified: Mon, 11 Apr 2016 09:41:13 GMT\r\nETag: \"7b094-5303258640040\"\r\nAccept-Ranges: bytes\r\nContent-Length: 503956\r\nKeep-Alive: timeout=5, max=98\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":503956,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 855 x 307, 8-bit/color RGB, interlaced","md5":"362a691a6134787ec5a808e509a3de76","sha1":"68940f48954790713633de07bce4bb367be5bb59","sha256":"f5f1d35ee3167e8590472feb1452b1efbc7056f09805e1c0c14a7a2b42ac5e1c","sha512":"3f9a533525760808be5e1586c6ccf9be342e2e94a3a463fa0c227fbabf802f5837687a43948ce6a9633459fdcde302439c78b775f921389f123c74a79fb01d26","ssdeep":"12288:r2tYzda6LBntam33eqKVr+UyopZOV/GqvA/nOlW:6Yd5BtakJQyk0/KT","tlshash":"96b4230b209968010327f4bebab15bfe267f9001797b129734bbd2fd5397ad694e8d40","first_seen":"2026-01-10T16:38:12.800912Z","last_seen":"2026-01-10T16:38:12.800912Z","times_seen":1,"resource_available":false,"data":null}},"time_used":342,"timings":{"blocked":110,"dns":0,"connect":0,"send":0,"wait":37,"receive":195,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"bbvaallianzatulado.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbvaallianzatulado.com/favicon.ico","fqdn":"bbvaallianzatulado.com","domain":"bbvaallianzatulado.com","tld":"com"},"ip":{"addr":"54.155.102.133","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbvaallianzatulado.com/","date":"2026-01-10T16:37:49.337Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbvaallianzatulado.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 28 Nov 2025 10:57:25 GMT","end":"Sat, 28 Nov 2026 10:14:01 GMT"},"fingerprint":{"sha1":"D0:8D:3F:58:AB:D4:B0:F2:FA:C7:C8:14:00:1C:20:6C:89:3C:84:35","sha256":"EF:9F:BB:5F:1E:9A:8B:A8:53:B7:18:E5:C8:01:CC:1B:45:80:5C:88:BE:13:57:0C:AE:73:CC:8F:AE:76:60:D8"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: bbvaallianzatulado.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbvaallianzatulado.com/\r\nCookie: PHPSESSID=d189c9b8a3637a560899437584190e43\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nDate: Sat, 10 Jan 2026 16:37:49 GMT\r\nServer: Apache\r\nContent-Length: 196\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/html; charset=iso-8859-1\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":196,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"62962daa1b19bbcc2db10b7bfd531ea6","sha1":"d64bae91091eda6a7532ebec06aa70893b79e1f8","sha256":"80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880","sha512":"9002a0475fdb38541e78048709006926655c726e93e823b84e2dbf5b53fd539a5342e7266447d23db0e5528e27a19961b115b180c94f2272ff124c7e5c8304e7","ssdeep":"","tlshash":"c0d0129e9183638b442225907ac211d2654d13a6b87645e82d82a48a951857dc5ca69d","first_seen":"2023-03-07T12:06:54Z","last_seen":"2026-04-25T16:05:36.379411Z","times_seen":95591,"resource_available":true,"data":null}},"time_used":36,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":36,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"bbvaallianzatulado.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbvaallianzatulado.com/","fqdn":"bbvaallianzatulado.com","domain":"bbvaallianzatulado.com","tld":"com"},"ip":{"addr":"54.155.102.133","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-01-10T16:37:48.511Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbvaallianzatulado.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 28 Nov 2025 10:57:25 GMT","end":"Sat, 28 Nov 2026 10:14:01 GMT"},"fingerprint":{"sha1":"D0:8D:3F:58:AB:D4:B0:F2:FA:C7:C8:14:00:1C:20:6C:89:3C:84:35","sha256":"EF:9F:BB:5F:1E:9A:8B:A8:53:B7:18:E5:C8:01:CC:1B:45:80:5C:88:BE:13:57:0C:AE:73:CC:8F:AE:76:60:D8"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bbvaallianzatulado.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 10 Jan 2026 16:37:48 GMT\r\nServer: Apache\r\nSet-Cookie: PHPSESSID=d189c9b8a3637a560899437584190e43; path=/\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\nPragma: no-cache\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 1828\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: text/html\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":5927,"size_decoded":0,"mime_type":"text/html","magic":"XML 1.0 document, ASCII text, with very long lines (343)","md5":"ddbda14aa232d460538ecf0047a223f1","sha1":"d25f6f5bd758518f0c884694e701b13ce0c314a8","sha256":"50d3e04cf8fabbdd4992dda23867b8b52c29141ec7a5439823e190d354e3add3","sha512":"55797e6764b4c489db9591bfc5cf2a863df5acb6e95c15b127b7a3f87f57ab9096d2d997c07642675bca03c55b11c3f0d0fa8180bebc580f79ee78c4a0e03c91","ssdeep":"48:cVam31uq4c5rCQwAwNqr0S/fRg4fa2cH6+ciqUkIr/9KJLSCBNejHijigLYzl72K:kjzLpCQa2av/73DqiAxBaU2AkSWh","tlshash":"fcc1862125c9dc75868356717990870a3c7ac153da0578a4f5ec1928cfe3f899a3b7ac","first_seen":"2026-01-10T16:38:12.802511Z","last_seen":"2026-01-10T16:38:12.802511Z","times_seen":1,"resource_available":false,"data":null}},"time_used":462,"timings":{"blocked":212,"dns":52,"connect":35,"send":0,"wait":36,"receive":1,"ssl":122},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"bbvaallianzatulado.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbvaallianzatulado.com/xlibs/main.css","fqdn":"bbvaallianzatulado.com","domain":"bbvaallianzatulado.com","tld":"com"},"ip":{"addr":"54.155.102.133","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bbvaallianzatulado.com/","date":"2026-01-10T16:37:49.043Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbvaallianzatulado.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 28 Nov 2025 10:57:25 GMT","end":"Sat, 28 Nov 2026 10:14:01 GMT"},"fingerprint":{"sha1":"D0:8D:3F:58:AB:D4:B0:F2:FA:C7:C8:14:00:1C:20:6C:89:3C:84:35","sha256":"EF:9F:BB:5F:1E:9A:8B:A8:53:B7:18:E5:C8:01:CC:1B:45:80:5C:88:BE:13:57:0C:AE:73:CC:8F:AE:76:60:D8"}}},"request":{"raw":"GET /xlibs/main.css HTTP/1.1\r\nHost: bbvaallianzatulado.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbvaallianzatulado.com/\r\nCookie: PHPSESSID=d189c9b8a3637a560899437584190e43\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 10 Jan 2026 16:37:49 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 01 Dec 2020 18:14:13 GMT\r\nETag: \"14fb-5b56b180a2740-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 1227\r\nKeep-Alive: timeout=5, max=99\r\nConnection: Keep-Alive\r\nContent-Type: text/css\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5371,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text, with CRLF line terminators","md5":"e52b7defbb8939702c3a1e51e61c3663","sha1":"a3e622ad9a80472806dd9b775dea5be869cd1df7","sha256":"87879b92fa1454a19e47d6e39da7cfccba3e94adbf8b1b78d5eabaf3e2816551","sha512":"ca74a610403a98d9fff42274913de9554b82509b60f2f214c033e164cb1f0447d913bd071540801745002cc433e158c33fc99e895ec309a2401880020b313588","ssdeep":"96:UPvXJMJHvI2wBAFn+h4+4FJHK5HX0FZsOfPB/JGTN4EO6PIo6ezQszM6oNYMHNrA:9DxUz6K5HX0FZsOfPB/JGR4EO6PIPezp","tlshash":"c9b1bd19ca005508a4716fb4bfb34f16fa9b04b31b064172bfe0a584ebe452e5a38fcd","first_seen":"2026-01-10T16:38:12.803459Z","last_seen":"2026-01-10T16:38:12.803459Z","times_seen":1,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"bbvaallianzatulado.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbvaallianzatulado.com/xlibs/allianz_general.js","fqdn":"bbvaallianzatulado.com","domain":"bbvaallianzatulado.com","tld":"com"},"ip":{"addr":"54.155.102.133","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bbvaallianzatulado.com/","date":"2026-01-10T16:37:49.044Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbvaallianzatulado.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 28 Nov 2025 10:57:25 GMT","end":"Sat, 28 Nov 2026 10:14:01 GMT"},"fingerprint":{"sha1":"D0:8D:3F:58:AB:D4:B0:F2:FA:C7:C8:14:00:1C:20:6C:89:3C:84:35","sha256":"EF:9F:BB:5F:1E:9A:8B:A8:53:B7:18:E5:C8:01:CC:1B:45:80:5C:88:BE:13:57:0C:AE:73:CC:8F:AE:76:60:D8"}}},"request":{"raw":"GET /xlibs/allianz_general.js HTTP/1.1\r\nHost: bbvaallianzatulado.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbvaallianzatulado.com/\r\nCookie: PHPSESSID=d189c9b8a3637a560899437584190e43\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 10 Jan 2026 16:37:49 GMT\r\nServer: Apache\r\nLast-Modified: Thu, 24 Dec 2015 11:48:06 GMT\r\nETag: \"287b-527a369754980-gzip\"\r\nAccept-Ranges: bytes\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\nContent-Length: 2909\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: application/javascript\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":10363,"size_decoded":0,"mime_type":"application/javascript","magic":"HTML document, Unicode text, UTF-8 text, with CRLF line terminators","md5":"ceaabe9994c7010075a21e5a2eefc922","sha1":"5ac8a031a029707287cba385ee7fb91fadcbb72f","sha256":"d4e8509f57b38258646b603635969a11450799520d246551e241c83fbb57a48e","sha512":"fdd120c72bc7bcd827d9bb4aeca9910169b35009300660b7742e696d132dbbc2622322fcb0b3c086bf3d969b59e665a71c11f75b208cab7f5f248beec24efef3","ssdeep":"192:M5dthZ/l7vSbjnu14P4AgJTX/8B+pQIOwmbwx:s7h/7qnnNP8ai","tlshash":"662281d67b0d00ed13e1232546394918de78c4775572c4e4f9ace0e4bb74d4a0bfaba9","first_seen":"2026-01-10T16:38:12.807036Z","last_seen":"2026-01-10T16:38:12.807036Z","times_seen":1,"resource_available":true,"data":null}},"time_used":199,"timings":{"blocked":81,"dns":1,"connect":33,"send":0,"wait":34,"receive":0,"ssl":48},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"bbvaallianzatulado.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bbvaallianzatulado.com/ximg/images_allianz.png","fqdn":"bbvaallianzatulado.com","domain":"bbvaallianzatulado.com","tld":"com"},"ip":{"addr":"54.155.102.133","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bbvaallianzatulado.com/","date":"2026-01-10T16:37:49.045Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bbvaallianzatulado.com","organization":""},"issuer":{"commonName":"Go Daddy Secure Certificate Authority - G2","organization":"GoDaddy.com, Inc."},"validity":{"start":"Fri, 28 Nov 2025 10:57:25 GMT","end":"Sat, 28 Nov 2026 10:14:01 GMT"},"fingerprint":{"sha1":"D0:8D:3F:58:AB:D4:B0:F2:FA:C7:C8:14:00:1C:20:6C:89:3C:84:35","sha256":"EF:9F:BB:5F:1E:9A:8B:A8:53:B7:18:E5:C8:01:CC:1B:45:80:5C:88:BE:13:57:0C:AE:73:CC:8F:AE:76:60:D8"}}},"request":{"raw":"GET /ximg/images_allianz.png HTTP/1.1\r\nHost: bbvaallianzatulado.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bbvaallianzatulado.com/\r\nCookie: PHPSESSID=d189c9b8a3637a560899437584190e43\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sat, 10 Jan 2026 16:37:49 GMT\r\nServer: Apache\r\nLast-Modified: Tue, 01 Dec 2020 18:01:56 GMT\r\nETag: \"8e8e-5b56aec1c6d00\"\r\nAccept-Ranges: bytes\r\nContent-Length: 36494\r\nKeep-Alive: timeout=5, max=100\r\nConnection: Keep-Alive\r\nContent-Type: image/png\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":36494,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1187 x 150, 8-bit/color RGB, non-interlaced","md5":"495f8fd5821b822446215c6b7cb9778a","sha1":"5a2ccba35ee1ee891ef292f3d45f8e1bec87e08b","sha256":"e7f8fc4ff078cf4291063957ca643b5fa9d7caf11bc246e2ff01eed384e93e6d","sha512":"7f4c330ecbbf45c5bb562c8333e199e811f20b178ddad0a839b7e1b2f68c12a2edd60cb997856020fc9417266ffb50bd53f38d4884fc286cd247df84599b7cc4","ssdeep":"768:JoQpxkve6M/mQJ77OfSZshpweUPUTdJ5G6MPvqfwSIxZQB71:dDkmsWDsYeUPU062SfwSIx+j","tlshash":"e8f2f1748df977878d04719319bd3f018f0c5497a7ba154f0e8939e11a0b8adca2a76a","first_seen":"2026-01-10T16:38:12.813555Z","last_seen":"2026-01-10T16:38:12.813555Z","times_seen":1,"resource_available":false,"data":null}},"time_used":305,"timings":{"blocked":115,"dns":1,"connect":34,"send":0,"wait":35,"receive":36,"ssl":65},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-01-10","alert":"Sinkholed","trigger":"bbvaallianzatulado.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}