{"report_id":"203f5837-622b-4a28-8c67-e6197c769b15","version":6,"status":"done","tags":[],"date":"2026-04-04T16:18:24Z","url":{"schema":"https","addr":"quantro-investments.com/","fqdn":"quantro-investments.com","domain":"quantro-investments.com","tld":"com"},"ip":{"addr":"172.67.180.115","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"quantro-investments.com/","fqdn":"quantro-investments.com","domain":"quantro-investments.com","tld":"com"},"title":"Quantro Login","dom":{"size":16627,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"cfbd5920379d2b9aa2b7d25ac395d19f","sha1":"ef82936d2d435eb33947dc3c3c1c2776f4783853","sha256":"55b1449874aaed0a935f13c6b077cf421c4fb58054ccbd5f1048d6e38ad7f534","sha512":"fa1a68efa172e78b0ffe4fc2260ad5d7aaf4760ccf5820aab7be6fe45c7ea61b2d93ca46b9e92c3bd224ff7a6782e84e6af5eaf96634279066531d21407718d1","ssdeep":"192:BrJdcFldV8huOENJR5rOhLNpv8oZ2OOG+H2ozZOfCH5+P8aI7KhdlOiksfJJq3pj:BrC+8QZov92KRv","tlshash":"1e72656aa9770541742385a93beb5b4f3674c003c106c9383fad93889f9b9cdd9a275c","dom_hash":"domhasha07365cd943108d7a2ac09f8ff49864b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"quantro-investments.com/","fqdn":"quantro-investments.com","domain":"quantro-investments.com","tld":"com"},"ip":{"addr":"172.67.180.115","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-09T16:18:24Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"quantro-investments.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"quantro-investments.com","ip":{"addr":"104.21.91.210","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-03-30","domain_rank":0,"first_seen":"2026-04-04T15:41:45.060545Z","last_seen":"2026-04-04T15:41:45.060545Z","alert_count":3,"request_count":3,"received_data":50926,"sent_data":1403,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"quantro-investments.com/","fqdn":"quantro-investments.com","domain":"quantro-investments.com","tld":"com"},"ip":{"addr":"104.21.91.210","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"ba7117fd73ed86ef11d872c6db39ead5","sha1":"3290b756fcc2de8d2b245f1f040f48ce0e1dd368","sha256":"d5a674aa9137b878d9d0c32e75989644bbc598b199906e3b0ea6ba4f3b8a4c7e","sha512":"2cff8863da1efa959478b440f168eb470c27b918055558e6a0425c817a4325782aae93217576b326bb78cde65120175139bc864c74aac4417ff7be378c24ee45","ssdeep":"","tlshash":"a38132bd5fbe162204539b1a32cf295a3a3840175400fd383b1cc74a1faed5ddaf26a8","size":4089,"data":"","first_seen":"2026-04-04T15:41:49.320158Z","last_seen":"2026-04-04T16:18:29.325909Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"quantro-investments.com/","fqdn":"quantro-investments.com","domain":"quantro-investments.com","tld":"com"},"ip":{"addr":"104.21.91.210","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-04T16:18:03.104Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"quantro-investments.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Mar 2026 15:10:15 GMT","end":"Sun, 28 Jun 2026 15:10:14 GMT"},"fingerprint":{"sha1":"29:3E:8D:84:4C:95:7D:FE:FB:E6:F6:F8:D8:28:90:E3:6A:5B:38:9E","sha256":"8E:B2:F5:9A:61:40:D5:9F:E9:46:B5:49:CA:B7:91:E3:C9:B8:68:92:C4:69:D2:2F:C6:A4:CE:F0:CF:55:06:9C"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: quantro-investments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 16:18:03 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Tue, 31 Mar 2026 11:40:38 GMT\r\nvary: Accept-Encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Z1kgYb7b6iYcg1lJGxvG7KxVC3adqK7%2BIWePTwcvvgIGg0mLzCpgLxeB93qu1hbdD4ixJlvyiJzZI2VqbKohOkQWtD9M%2BvWrRtpxEsC4lVyOXnZF59fvJKqnc5m4FgVdIiOcWh61jtgEQA%3D%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9e71a071cb851ae6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":16702,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text","md5":"a953d09b10c53ccd416c0142567f8bfc","sha1":"de21e9b8b2186421056c8e125152beb7450244d1","sha256":"23f83bfe8a7ca1202f5181022a9d64b0eb1314645aee30159dee30e5bc22915a","sha512":"68da299e93e19ca0dc11f21f499f8ca0dc3694af6e70119ece24d412d661d5354cdce4e5db13d157a040ff33486c79df32b8ad6c59f9523fe706ce001114a28c","ssdeep":"192:dJdcFldV8huOENJR5rOhLNpv8oZ2OOG+H2ozZOfCH5+P8aI7KhdlOiksfJJq3peT:dC+8QZ1392KRT","tlshash":"7972646aaa770541742385a93beb5b4f3774c003c106c9383fad93889f9b9cdd9a275c","first_seen":"2026-04-04T15:41:49.317462Z","last_seen":"2026-04-04T16:18:29.32141Z","times_seen":4,"resource_available":true,"data":null}},"time_used":250,"timings":{"blocked":61,"dns":42,"connect":1,"send":0,"wait":122,"receive":0,"ssl":18},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"quantro-investments.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"quantro-investments.com/quantro-logo.jpg","fqdn":"quantro-investments.com","domain":"quantro-investments.com","tld":"com"},"ip":{"addr":"104.21.91.210","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://quantro-investments.com/","date":"2026-04-04T16:18:03.458Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"quantro-investments.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Mar 2026 15:10:15 GMT","end":"Sun, 28 Jun 2026 15:10:14 GMT"},"fingerprint":{"sha1":"29:3E:8D:84:4C:95:7D:FE:FB:E6:F6:F8:D8:28:90:E3:6A:5B:38:9E","sha256":"8E:B2:F5:9A:61:40:D5:9F:E9:46:B5:49:CA:B7:91:E3:C9:B8:68:92:C4:69:D2:2F:C6:A4:CE:F0:CF:55:06:9C"}}},"request":{"raw":"GET /quantro-logo.jpg HTTP/1.1\r\nHost: quantro-investments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://quantro-investments.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 16:18:03 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 31876\r\nlast-modified: Mon, 30 Mar 2026 16:40:37 GMT\r\npriority: u=4,i=?0\r\netag: \"69caa785-7c84\"\r\nexpires: Sun, 05 Apr 2026 15:41:23 GMT\r\ncache-control: max-age=86400\r\naccept-ranges: bytes\r\nage: 2199\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6JAEZcIoQOUyDO%2FTSD56gs3d%2BQ2dbHqStkh1%2FyRixj7XRXsFnvvx%2BBQDTMEVjfPXEfgFNF3d9ODFUa5M6CvyY82rB%2Bw9dPeSW5mLCkNSz9BLOlYKmLZ2s%2FAUm4KBf2GULjHkgjNlvifuqg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9e71a0739935712e-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31876,"size_decoded":0,"mime_type":"image/jpeg","magic":"PNG image data, 388 x 150, 8-bit/color RGBA, non-interlaced","md5":"9d66802c37589d3d2d2376d4b6f3cf5b","sha1":"e33c98579de59d138104524a275a7ec49c1a0b82","sha256":"d6e0e5f933acd03760caad89be199be24c2235b0d9bed76293b494a01d342522","sha512":"b48143c79fd8203210c0a13c6e199acca16835fcfec84e6957bc96514a1346ff5861dcd3f77f23f56ca3bbdd152b70275dae9e5c7d93339659d564963b65c65a","ssdeep":"768:osPzBja9vtK83O+UlQzknkNiHlMCewiSJKjGrWJFmXaFwyp:Vtj6K83nzKdeNSh2FmXa3p","tlshash":"f5e2f17704fdf8b493b42134d2d5f25086368d3a7c4a4d43e25c34b7a9d8612b6af2d5","first_seen":"2026-04-04T15:41:49.318426Z","last_seen":"2026-04-04T16:18:29.322808Z","times_seen":4,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"quantro-investments.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"quantro-investments.com/favicon.ico","fqdn":"quantro-investments.com","domain":"quantro-investments.com","tld":"com"},"ip":{"addr":"104.21.91.210","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://quantro-investments.com/","date":"2026-04-04T16:18:03.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"quantro-investments.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 30 Mar 2026 15:10:15 GMT","end":"Sun, 28 Jun 2026 15:10:14 GMT"},"fingerprint":{"sha1":"29:3E:8D:84:4C:95:7D:FE:FB:E6:F6:F8:D8:28:90:E3:6A:5B:38:9E","sha256":"8E:B2:F5:9A:61:40:D5:9F:E9:46:B5:49:CA:B7:91:E3:C9:B8:68:92:C4:69:D2:2F:C6:A4:CE:F0:CF:55:06:9C"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: quantro-investments.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://quantro-investments.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 16:18:03 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\nvary: accept-encoding\r\npriority: u=6,i=?0\r\ncontent-encoding: br\r\ncache-control: max-age=14400\r\ncf-cache-status: EXPIRED\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8XNkwKfTqxVQm%2FvFdTjqaQ1wtmeTJpIloD2N85SAqaLeezGtHFzWZfURUCF8QkLvYUxeXrFx0XAwPIx9iu4njiFbrTg2QlKr7E3rnq1AcaV068IMXBh43pRkV7Go6u%2FTG4EFdRhvEZoftQ%3D%3D\"}]}\r\ncf-ray: 9e71a073e93a712e-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":285,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"0515904a3467c8094549e05ec241e214","sha1":"3481b4665718e4fd26c20539c36bd7b0f1e13faf","sha256":"799424da7301484333b8000d151785c7a203158dc88272b2191bca524778056f","sha512":"88727ca25a019fb85509b22b01ba7d84b8ef07d92fff8a4b5e5d29b88788f12a75fbd9b059724c07efe2affdbb6a7eb21c33785333e176f55e31df70926f64c3","ssdeep":"","tlshash":"b0d0279e504363474512155037c115c7174d13f5747945d83d45d48751a463ecd9f59c","first_seen":"2026-04-04T15:41:49.319304Z","last_seen":"2026-04-04T16:18:29.324801Z","times_seen":4,"resource_available":false,"data":null}},"time_used":129,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":129,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"quantro-investments.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}