{"report_id":"145c080e-2b2d-45d7-90cc-46f1157d6a2e","version":6,"status":"done","tags":[],"date":"2026-03-28T04:16:22Z","url":{"schema":"https","addr":"slon4----------cc.ru","fqdn":"slon4----------cc.ru","domain":"slon4----------cc.ru","tld":"ru"},"ip":{"addr":"178.20.45.8","port":0,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"final":{"url":{"schema":"https","addr":"slon4----------cc.ru/","fqdn":"slon4----------cc.ru","domain":"slon4----------cc.ru","tld":"ru"},"title":"slon4.cc — 3D-печать и прототипирование на заказ в Москве","dom":{"size":47882,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (350)","md5":"969d6bb66edd5aaa30eb3fec4ccc1554","sha1":"3c826b03dc9adf4206a1c061ba3ad530ea71bf42","sha256":"c173cbc19e851773e8b0f824c774073dcd0e484b88a43125091296ed945fcd4d","sha512":"6740a2492b716f0fd80b4701e8e83f3f7f70216d23623d50232509e65e4f14ba8e5d776573590be5f7b9705e3ee4601787d31039ff60391382bb722af4c1160b","ssdeep":"768:EbnnT9LZzmCDyEsqFgiII+amXKh4b/zrRzX/73gdZtkUdL:EbnnT9LZzjrFnII+amXKh4b/zh/73gd7","tlshash":"5223a72021f854aa2127f589f9055f0e3ee8947f9e1f432536fc186dafd78a8c52724e","dom_hash":"domhash66cc872f04c12bd7d0ee8370a99a31b7","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"slon4----------cc.ru","fqdn":"slon4----------cc.ru","domain":"slon4----------cc.ru","tld":"ru"},"ip":{"addr":"178.20.45.8","port":0,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-02T04:16:22Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"slon4----------cc.ru","ip":{"addr":"178.20.45.8","port":443,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"domain_registered":"2026-03-24","domain_rank":0,"first_seen":"2026-03-28T04:16:22.547121Z","last_seen":"2026-03-28T04:16:22.547121Z","alert_count":0,"request_count":2,"received_data":53005,"sent_data":936,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"slon4----------cc.ru/","fqdn":"slon4----------cc.ru","domain":"slon4----------cc.ru","tld":"ru"},"ip":{"addr":"178.20.45.8","port":443,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"introduction_type":"scriptElement","is_inline":true,"md5":"de7fb06634f6f8f73ebb907e95d93144","sha1":"425185a06fd345b47e3c68750f1fc81f281a3bf9","sha256":"d59b439e36974225669385a9933b0f62a2e88336112ae52dc9e9ece79fc935f5","sha512":"3d0f64c059da61c1a11346e817215e8c2dc68c60422e59bda4ab85da4517c9d794aa3cc09d0bb717f5876262daf807f0340045bdeca348c088f25dc8ea84f185","ssdeep":"","tlshash":"b4f027483d68307f50779a72436f13043f2f004a108582233df8a1ca0fe55494ab1aef","size":483,"data":"","first_seen":"2026-03-28T04:13:27.041085Z","last_seen":"2026-04-07T20:25:53.312571Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"slon4----------cc.ru/","fqdn":"slon4----------cc.ru","domain":"slon4----------cc.ru","tld":"ru"},"ip":{"addr":"178.20.45.8","port":443,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-28T04:16:00.950Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon4----------cc.ru","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 12:51:17 GMT","end":"Mon, 22 Jun 2026 12:51:16 GMT"},"fingerprint":{"sha1":"9C:5A:E8:95:06:AC:2C:12:E1:27:20:5A:9C:02:8B:9E:49:37:BE:C4","sha256":"45:EA:DD:55:80:28:8D:99:5A:E8:2E:A3:F5:FD:B9:22:D3:9D:33:A6:CA:B1:08:00:07:CA:AA:4D:8A:18:8C:65"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: slon4----------cc.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Sat, 28 Mar 2026 04:16:01 GMT\r\nContent-Type: text/html\r\nLast-Modified: Tue, 24 Mar 2026 12:46:32 GMT\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nETag: W/\"69c287a8-bc62\"\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":48226,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (350)","md5":"458e77a216ac66a0fe6d1dc481ab3bf0","sha1":"0ec184c5e67bb5f57f001ba8200fccc1eec59b9f","sha256":"5503693b94b3992257fdbec3b1423cc7428ca94cdcf811248e9c7ec446ce63af","sha512":"85c3b5ef2a81cff71298fee592655845de5acba6e3fbbc3d1f3ec117ccda341ca2176339e2d94a110a7ce4030071ecc8b778faf95f28c774a7957723d1a6235b","ssdeep":"768:ibnMT9LZzmCDyEsqFgiIIGamXKh4b/zrRzXxU3JdZNiGoZ:ibnMT9LZzjrFnIIGamXKh4b/zhxU3Jd4","tlshash":"e723a62021f864aa2167f549f9055f0e3ee8947f9e1f032536fc186dafd78a8c52724e","first_seen":"2026-03-28T04:16:25.628064Z","last_seen":"2026-03-28T04:16:25.628064Z","times_seen":1,"resource_available":true,"data":null}},"time_used":443,"timings":{"blocked":170,"dns":63,"connect":49,"send":0,"wait":97,"receive":1,"ssl":61},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slon4----------cc.ru/favicon.ico","fqdn":"slon4----------cc.ru","domain":"slon4----------cc.ru","tld":"ru"},"ip":{"addr":"178.20.45.8","port":443,"asn":48282,"as":"Hosting technology LTD","country":"Russia","country_code":"RU"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://slon4----------cc.ru/","date":"2026-03-28T04:16:01.489Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slon4----------cc.ru","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 24 Mar 2026 12:51:17 GMT","end":"Mon, 22 Jun 2026 12:51:16 GMT"},"fingerprint":{"sha1":"9C:5A:E8:95:06:AC:2C:12:E1:27:20:5A:9C:02:8B:9E:49:37:BE:C4","sha256":"45:EA:DD:55:80:28:8D:99:5A:E8:2E:A3:F5:FD:B9:22:D3:9D:33:A6:CA:B1:08:00:07:CA:AA:4D:8A:18:8C:65"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: slon4----------cc.ru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://slon4----------cc.ru/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.22.1\r\nDate: Sat, 28 Mar 2026 04:16:01 GMT\r\nContent-Type: image/x-icon\r\nContent-Length: 4286\r\nLast-Modified: Tue, 24 Mar 2026 12:46:31 GMT\r\nConnection: keep-alive\r\nETag: \"69c287a7-10be\"\r\nAccept-Ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.22.1","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":4286,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 32x32, 24 bits/pixel","md5":"f90dc97292c61ac05189301568564212","sha1":"f39bd72b576992385df1e1a449b5bdb8b80a3e74","sha256":"c8e72a6a9a55265d389d6c160e1e6c020bbd8c8807a8d538a68f02036ba05028","sha512":"ffe2c11b5190abed211f6465d88712c37bc2ed4d63e3a0727c6971523c2d7be45bb30614eb2d68083d396c99b4f17a08693a3b647fbb180c44f96132e26589af","ssdeep":"12:sH2DbjggggggggPoZA6MrlX0zPAl/Z5+X0tRomEXGqrEscWP17DO2y0zEWCQtVG+:sWP6MrlX0kHec+WqLPxDO2y04WDuPts","tlshash":"73918c40a2d2b699d18967310ca7cf7423719c48c81b1b2b72ed3d973df52c235192c0","first_seen":"2026-02-16T17:49:08.182201Z","last_seen":"2026-04-07T20:25:53.312022Z","times_seen":23,"resource_available":false,"data":null}},"time_used":51,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":51,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}