{"report_id":"239158ba-4715-428c-8595-7b35ec42caf2","version":6,"status":"done","tags":[],"date":"2026-04-28T16:34:30Z","url":{"schema":"http","addr":"bankid-felsok.com","fqdn":"bankid-felsok.com","domain":"bankid-felsok.com","tld":"com"},"ip":{"addr":"216.198.79.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"bankid-felsok.com/","fqdn":"bankid-felsok.com","domain":"bankid-felsok.com","tld":"com"},"title":"Deployment Unavailable","dom":{"size":1636,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (1636), with no line terminators","md5":"4b806630ab8ad850c30597fd091b2d5a","sha1":"54bacdcc97c63990df7be31cdc6b8c0b9dab4df9","sha256":"2ef5be2de6f2f828571c00d6eb9c1705a8ff35ff9507d4e041b9221569bc46a5","sha512":"e6909de1801fe800b35489ad36872871ffc7269b8eb632d57c57b988246bb97d70834bc0edd0493307d9e6e4335ec32305206f40697ae7ebe5dedbfb10a18cd2","ssdeep":"","tlshash":"103174b745b1702ef23b88fd34e633682244901bc0820e99b618efb4e2c7ca65023645","dom_hash":"domhashec6cdb565b8b0f77c754672472fa9910","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"bankid-felsok.com","fqdn":"bankid-felsok.com","domain":"bankid-felsok.com","tld":"com"},"ip":{"addr":"216.198.79.1","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-02T16:34:30Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"bankid-felsok.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"bankid-felsok.com","ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2026-03-18","domain_rank":0,"first_seen":"2026-03-18T12:09:19.605928Z","last_seen":"2026-03-18T12:09:19.605928Z","alert_count":3,"request_count":3,"received_data":4384,"sent_data":1413,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"bankid-felsok.com/","fqdn":"bankid-felsok.com","domain":"bankid-felsok.com","tld":"com"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-28T16:34:05.590Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bankid-felsok.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 08:16:15 GMT","end":"Tue, 16 Jun 2026 08:16:14 GMT"},"fingerprint":{"sha1":"EC:A5:E6:50:62:95:07:20:55:3A:1D:E1:9B:3B:DE:84:B3:CA:1A:D9","sha256":"9B:10:3A:A8:DC:01:52:CA:D6:56:98:07:26:7E:0F:F7:0B:C2:43:CE:1D:EA:6B:A4:E3:84:E0:F5:85:30:B6:07"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bankid-felsok.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 451 Unavailable For Legal Reasons\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: text/html; charset=utf-8\r\ndate: Tue, 28 Apr 2026 16:34:05 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-error: DEPLOYMENT_DISABLED\r\nx-vercel-id: arn1::c6d26-1777394045664-485c8261e164\r\ncontent-length: 1590\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"451","status_text":"Unavailable For Legal Reasons","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":1590,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (1590), with no line terminators","md5":"ec189860fd933460ff9de737bb373bf0","sha1":"140aac79cf2322de41311bfb18029ac681a40d9e","sha256":"8c1d551e6cfeb90c0c747f5a40b790a61b0be689d9fb4f8e104531fbbeab559f","sha512":"1a7f07bc58a2676be8cd697a9bb24c4e6b03ac2846afa7ea5150b9a6dad416c5fc7764f70275cde487a1f5c3fd157c771880ec3f09738ae668d3a4a309418523","ssdeep":"","tlshash":"983142a745b1702ef33b88fd34da375462089527c0920f99fa58efb8e2c78a61133649","first_seen":"2026-04-28T16:34:32.038222Z","last_seen":"2026-04-28T16:34:32.038222Z","times_seen":1,"resource_available":true,"data":null}},"time_used":163,"timings":{"blocked":71,"dns":43,"connect":1,"send":0,"wait":10,"receive":11,"ssl":24},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"bankid-felsok.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bankid-felsok.com/","fqdn":"bankid-felsok.com","domain":"bankid-felsok.com","tld":"com"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-28T16:34:05.766Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bankid-felsok.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 08:16:15 GMT","end":"Tue, 16 Jun 2026 08:16:14 GMT"},"fingerprint":{"sha1":"EC:A5:E6:50:62:95:07:20:55:3A:1D:E1:9B:3B:DE:84:B3:CA:1A:D9","sha256":"9B:10:3A:A8:DC:01:52:CA:D6:56:98:07:26:7E:0F:F7:0B:C2:43:CE:1D:EA:6B:A4:E3:84:E0:F5:85:30:B6:07"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bankid-felsok.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 451 Unavailable For Legal Reasons\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: text/html; charset=utf-8\r\ndate: Tue, 28 Apr 2026 16:34:05 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-error: DEPLOYMENT_DISABLED\r\nx-vercel-id: arn1::lvwkv-1777394045770-e016d75cc5ce\r\ncontent-length: 1590\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"451","status_text":"Unavailable For Legal Reasons","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1590,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (1590), with no line terminators","md5":"65ef8c844b2a710105b4a6339872e3a8","sha1":"35d44103e74ca5afdab87d66f1bdc1377d0587e2","sha256":"5ee1bc04ee2d11d08b41552e56e40d3a6403c75771785ef80fe7c772b96b5630","sha512":"e506213a9690c678b68ad6c1f2ed24ceed1ca0236d88433aa11a249e1b603f9511d9e9aba0987f4637d0f3a0ab7bc1b6f7e68ba2f9799474fbb1140fb9074327","ssdeep":"","tlshash":"853144a705b1702ef23b88fd34d637646208d526c0920f96f658ffb8e2c78a65533a49","first_seen":"2026-04-28T16:34:32.039406Z","last_seen":"2026-04-28T16:34:32.039406Z","times_seen":1,"resource_available":true,"data":null}},"time_used":14,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":10,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"bankid-felsok.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bankid-felsok.com/favicon.ico","fqdn":"bankid-felsok.com","domain":"bankid-felsok.com","tld":"com"},"ip":{"addr":"216.198.79.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bankid-felsok.com/","date":"2026-04-28T16:34:05.880Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bankid-felsok.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Wed, 18 Mar 2026 08:16:15 GMT","end":"Tue, 16 Jun 2026 08:16:14 GMT"},"fingerprint":{"sha1":"EC:A5:E6:50:62:95:07:20:55:3A:1D:E1:9B:3B:DE:84:B3:CA:1A:D9","sha256":"9B:10:3A:A8:DC:01:52:CA:D6:56:98:07:26:7E:0F:F7:0B:C2:43:CE:1D:EA:6B:A4:E3:84:E0:F5:85:30:B6:07"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: bankid-felsok.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bankid-felsok.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 451 Unavailable For Legal Reasons\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-type: text/plain; charset=utf-8\r\ndate: Tue, 28 Apr 2026 16:34:05 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-error: DEPLOYMENT_DISABLED\r\nx-vercel-id: arn1::c6d26-1777394045885-781aa05d3ccf\r\ncontent-length: 109\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"451","status_text":"Unavailable For Legal Reasons","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]}],"data":{"size":109,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text","md5":"d24a8ba8fa38de115b621a5b9809fd89","sha1":"eb5d78c2e902a6be2a4c16593bdd48312f6d8e05","sha256":"6f2f849c44ced3528f01391de601cc0a34ed0da1a7015e93fccaac5c05d7ba36","sha512":"c8b75ab323ea499c14c7bc64a36cb759468d3a2e01c064b4f88c6fe0f84d03171177d0985494c1e937061609c7520fca85cca81609658bee971a64bdd310bdc3","ssdeep":"","tlshash":"fbb02ba4d050008273680340041c14409444c1592488800445e18e2e114e598c389010","first_seen":"2026-04-28T16:34:32.040488Z","last_seen":"2026-04-28T16:34:32.040488Z","times_seen":1,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-28","alert":"Sinkholed","trigger":"bankid-felsok.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}