{"report_id":"31865aff-c3b4-440e-a0e2-e4dc9d284592","version":0,"status":"done","tags":[],"date":"2026-07-18T15:59:16Z","url":{"schema":"http","addr":"hydynamicriskssolution.com","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"hydynamicriskssolution.com/","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"title":"Hydynamic Risks Solution - Risk Management Experts","dom":{"size":18243,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"1de8039d1278692cfce190d57ce14a3b","sha1":"207e41888816dab08d57c4610783c85e4eda1256","sha256":"4532496ce6cb427ac00f928000961d9f4becb00eb545a91dca9e19dbcfe47385","sha512":"517e0b0b004476dd6bf84163dd4ed8b20913a11f65c3843e8a6b10bb82e907085d1bd4afb823e30a2eaaa1633a3d4cd71e6a1c6e1b88ae68d6327692a0a3015b","ssdeep":"96:nGNLgRHWS87SjSjSxGXIZcCfvf4fJfaf7QW7Va9ixOP3DCXbHnjDVK8WcUyu5qys:GN2HJLuugGJKdcSjzCG822fgHvwjLJvN","tlshash":"e182203565f42436814282895eb2632f2f79e243db4e150973fc1a99afc3d8fcc176a9","dom_hash":"domhash88c0e0525893b707b10b065c7c9de33f","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"hydynamicriskssolution.com","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-22T15:59:16Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-18","alert":"Phishing Block","trigger":"hydynamicriskssolution.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"hydynamicriskssolution.com","ip":{"addr":"162.35.175.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2018-10-30","domain_rank":0,"first_seen":"2026-02-24T09:09:57.262494Z","last_seen":"2026-02-24T09:09:57.262494Z","alert_count":40,"request_count":10,"received_data":24819857,"sent_data":5175,"comment":"","tags":null,"fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"hydynamicriskssolution.com/script.js","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"e211f7b8914dd88438ed593d234ac797","sha1":"88984857bbe5ebff1af003270c92edcb91b8e501","sha256":"56792ed2bae2b6e86ef44147849ae550818d091f0f185186cc01c5f022dfb208","sha512":"8ba6d7d639c641aee4fcd950585078f8348f7d8357fbf3a111bf9029372037ae295b912b84c190767f475e4de14f87a55fed8d2c2da55d008dabb4928e4ad12e","ssdeep":"96:SuDOtqfIIndna31gk3C1Nfluikk0PTEB/NGj6WswVs1SDreHUyrAtRI+x6ZInTPf:bImlvkkmTem6WhVs1SDre0yRY70A","tlshash":"85d1640a6139107b85fb1b77a3a28658fe7a0063344042453d6ccacd1ff1a69b975ff8","size":6416,"data":"","first_seen":"2026-07-18T15:59:20.370042Z","last_seen":"2026-07-18T15:59:42.509671Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"hydynamicriskssolution.com/images/hydynamic-logo.png","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://hydynamicriskssolution.com/","date":"2026-07-18T15:58:47.021Z","timestamp":1784390327021,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hydynamicriskssolution.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Jul 2026 17:44:30 GMT","end":"Mon, 12 Oct 2026 17:44:29 GMT"},"fingerprint":{"sha1":"C0:47:41:FA:33:D2:E9:25:D7:20:55:7F:D8:8C:DE:53:4B:EF:07:71","sha256":"8C:4F:17:6D:9B:23:CA:72:7D:0F:EB:C5:1C:F6:E7:9D:97:CB:9B:1E:43:67:66:D5:95:A8:73:DE:E7:11:AF:48"}}},"request":{"raw":"GET /images/hydynamic-logo.png HTTP/1.1\r\nHost: hydynamicriskssolution.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://hydynamicriskssolution.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 18 Jul 2026 15:58:47 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 12 Mar 2026 12:00:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b2aaf2-13e54\"\r\nexpires: Mon, 17 Aug 2026 15:58:47 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":81492,"size_decoded":82051,"mime_type":"image/png","magic":"PNG image data, 308 x 262, 8-bit/color RGBA, non-interlaced","md5":"ef24eb3538265437ab136ca5871b9001","sha1":"026f17e196031fbb2cfd7c2f1825920bfa0b580e","sha256":"05fa3414dbb8682bac02d393b3c4335cea1b5a4d7074f73945b8c37d85cb8743","sha512":"3574cf0dd08ab2093a2f9e8f6e0e3ef75e521de40712dfec3cdebb489c86bd1b21389bcbf4d71a94da264553618a8e110a223ed1e8a0df2bb66dd7868e3568eb","ssdeep":"1536:XLN33R2lOpiFL7phYs+I7+n37m0Qyq+2tKSXvyiRzN1CMKjK+Sz4J:XLBriFRhYs+k+n375Qn+2ILixUMKjK/K","tlshash":"b18312198af8467fd7f9a20495710632d274a946f010887af2f5df6b9071f1fbe62b20","first_seen":"2026-07-18T15:59:20.363633Z","last_seen":"2026-07-18T15:59:42.499789Z","times_seen":2,"resource_available":false,"data":null}},"time_used":197,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":197,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-18","alert":"Phishing Block","trigger":"hydynamicriskssolution.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hydynamicriskssolution.com/images/slide2.jpg","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://hydynamicriskssolution.com/","date":"2026-07-18T15:58:47.132Z","timestamp":1784390327132,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hydynamicriskssolution.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Jul 2026 17:44:30 GMT","end":"Mon, 12 Oct 2026 17:44:29 GMT"},"fingerprint":{"sha1":"C0:47:41:FA:33:D2:E9:25:D7:20:55:7F:D8:8C:DE:53:4B:EF:07:71","sha256":"8C:4F:17:6D:9B:23:CA:72:7D:0F:EB:C5:1C:F6:E7:9D:97:CB:9B:1E:43:67:66:D5:95:A8:73:DE:E7:11:AF:48"}}},"request":{"raw":"GET /images/slide2.jpg HTTP/1.1\r\nHost: hydynamicriskssolution.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://hydynamicriskssolution.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 18 Jul 2026 15:58:47 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 12 Mar 2026 11:57:34 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b2aa2e-6802bc\"\r\nexpires: Mon, 17 Aug 2026 15:58:47 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6816444,"size_decoded":6790251,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=11, manufacturer=NIKON CORPORATION, model=NIKON D90, orientation=upper-left, xresolution=180, yresolution=188, resolutionunit=2, software=Ver.1.00 , datetime=2020:02:01 14:01:55, GPS-Data], baseline, precision 8, 4288x2848, components 3","md5":"0bf24bde9170d78df25311f918dc4e6a","sha1":"af14182fd1a519ab458f9495608f111d90936669","sha256":"0bd22d99e797bc4b191e82bf76bc4e71097be7ba0d474fb5e521ad65ec51fc5a","sha512":"39262a46303cf6d01454a9eb08b5fd778d37473fd4a5cf989943f95f72f92551a897ecaa3f5892626c3a4e8ac2583d6cee2804ba8b36f662858f94ef09c6af5a","ssdeep":"24576:lh6eXH1BPeG65FyzIdsuedIUW6EvpyGwssSiYBFOyEVme:lN2GuxkEv5fC7","tlshash":"a62533bbe712d669d189c475fc0911dfb7b6adf23d0e600a34e72098ea3b4301393a16","first_seen":"2026-07-18T15:59:20.364973Z","last_seen":"2026-07-18T15:59:42.504313Z","times_seen":2,"resource_available":false,"data":null}},"time_used":292,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":292,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-18","alert":"Phishing Block","trigger":"hydynamicriskssolution.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hydynamicriskssolution.com/images/slide3.jpg","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://hydynamicriskssolution.com/","date":"2026-07-18T15:58:47.135Z","timestamp":1784390327135,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hydynamicriskssolution.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Jul 2026 17:44:30 GMT","end":"Mon, 12 Oct 2026 17:44:29 GMT"},"fingerprint":{"sha1":"C0:47:41:FA:33:D2:E9:25:D7:20:55:7F:D8:8C:DE:53:4B:EF:07:71","sha256":"8C:4F:17:6D:9B:23:CA:72:7D:0F:EB:C5:1C:F6:E7:9D:97:CB:9B:1E:43:67:66:D5:95:A8:73:DE:E7:11:AF:48"}}},"request":{"raw":"GET /images/slide3.jpg HTTP/1.1\r\nHost: hydynamicriskssolution.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://hydynamicriskssolution.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 18 Jul 2026 15:58:47 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 12 Mar 2026 11:56:58 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b2aa0a-532c26\"\r\nexpires: Mon, 17 Aug 2026 15:58:47 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":5450790,"size_decoded":5318324,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=33, height=2592, bps=410, PhotometricInterpretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D200, orientation=upper-left, width=3872], baseline, precision 8, 3872x2592, components 3","md5":"30f01c9206cd2bfb39e29d47a385914b","sha1":"08bc8a6b66a4f2af106811c84102d257fcb3a255","sha256":"7571f13617a1fa71ea8c918bce3303fa04ef465b96ffd31684e14d943730cbb1","sha512":"eed8459c19e773c5a3339b903df80285c8be5d5ef30853c441a69f67c71852ee3bd5eb3963838129d243492e9b7994424d3c6f741d447588959d9eea7dedd80c","ssdeep":"24576:V3X7x2S/KoAyQ1svymHp4k1s87t9gpCNaHYY53SY1+:Vbx27o012d4s74Ci5xY","tlshash":"8425ef258d70bb12ee660968a3912aae041c3d6f13f55308b85ece4f7393dde359f842","first_seen":"2026-07-18T15:59:20.36639Z","last_seen":"2026-07-18T15:59:42.505782Z","times_seen":2,"resource_available":false,"data":null}},"time_used":288,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":288,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-18","alert":"Phishing Block","trigger":"hydynamicriskssolution.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hydynamicriskssolution.com/favicon.ico","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://hydynamicriskssolution.com/","date":"2026-07-18T15:58:47.851Z","timestamp":1784390327851,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hydynamicriskssolution.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Jul 2026 17:44:30 GMT","end":"Mon, 12 Oct 2026 17:44:29 GMT"},"fingerprint":{"sha1":"C0:47:41:FA:33:D2:E9:25:D7:20:55:7F:D8:8C:DE:53:4B:EF:07:71","sha256":"8C:4F:17:6D:9B:23:CA:72:7D:0F:EB:C5:1C:F6:E7:9D:97:CB:9B:1E:43:67:66:D5:95:A8:73:DE:E7:11:AF:48"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: hydynamicriskssolution.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://hydynamicriskssolution.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Sat, 18 Jul 2026 15:58:47 GMT\r\ncontent-type: text/html\r\ncontent-length: 146\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":146,"size_decoded":279,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8eec510e57f5f732fd2cce73df7b73ef","sha1":"3c0af39ecb3753c5fee3b53d063c7286019eac3b","sha256":"55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0","sha512":"73bbf698482132b5fd60a0b58926fddec9055f8095a53bc52714e211e9340c3419736ceafd6b279667810114d306bfccdcfcddf51c0b67fe9e3c73c54583e574","ssdeep":"","tlshash":"b7c02b2d35133c4cc563313423c37140c0d6833b687a41110400c00371cf2998ec3397","first_seen":"2023-03-07T12:05:15Z","last_seen":"2026-07-19T05:17:35.839625Z","times_seen":541458,"resource_available":true,"data":null}},"time_used":117,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":117,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-18","alert":"Phishing Block","trigger":"hydynamicriskssolution.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hydynamicriskssolution.com/","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-18T15:58:46.159Z","timestamp":1784390326159,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hydynamicriskssolution.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Jul 2026 17:44:30 GMT","end":"Mon, 12 Oct 2026 17:44:29 GMT"},"fingerprint":{"sha1":"C0:47:41:FA:33:D2:E9:25:D7:20:55:7F:D8:8C:DE:53:4B:EF:07:71","sha256":"8C:4F:17:6D:9B:23:CA:72:7D:0F:EB:C5:1C:F6:E7:9D:97:CB:9B:1E:43:67:66:D5:95:A8:73:DE:E7:11:AF:48"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: hydynamicriskssolution.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 18 Jul 2026 15:58:46 GMT\r\ncontent-type: text/html\r\nlast-modified: Thu, 12 Mar 2026 12:40:36 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b2b444-43c8\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":17352,"size_decoded":3712,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"5fab35f5f9635207edc439e4e41fa8b8","sha1":"14fa5d79447fc38d720f675123b8b2ad1cf79409","sha256":"7c2baff1262f6006d46cfd71885307cdcb313ca7fbb655c1812717e179495018","sha512":"436e7a105ef7210949ec5ac914f407f1516def1ab2538f799051ec2d545481bec6dbd06e2c5e69943c41eeb64fb6d50f6c83716917c3cd15f31c94b7fdd28235","ssdeep":"192:jCCH8hbZZ2SlmVNldAVbZulcIExfM5J1BGFF2fnHO9yh9evX:L8dZZNKoyHOMu","tlshash":"f1721f3555c42036827381594f3527aafeba8283974e660476fd3b8b5ff3d0acc235a5","first_seen":"2026-07-18T15:59:20.368207Z","last_seen":"2026-07-18T15:59:42.508083Z","times_seen":2,"resource_available":true,"data":null}},"time_used":674,"timings":{"blocked":-1,"dns":259,"connect":102,"send":0,"wait":102,"receive":0,"ssl":211},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-18","alert":"Phishing Block","trigger":"hydynamicriskssolution.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hydynamicriskssolution.com/script.js","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://hydynamicriskssolution.com/","date":"2026-07-18T15:58:47.014Z","timestamp":1784390327014,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hydynamicriskssolution.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Jul 2026 17:44:30 GMT","end":"Mon, 12 Oct 2026 17:44:29 GMT"},"fingerprint":{"sha1":"C0:47:41:FA:33:D2:E9:25:D7:20:55:7F:D8:8C:DE:53:4B:EF:07:71","sha256":"8C:4F:17:6D:9B:23:CA:72:7D:0F:EB:C5:1C:F6:E7:9D:97:CB:9B:1E:43:67:66:D5:95:A8:73:DE:E7:11:AF:48"}}},"request":{"raw":"GET /script.js HTTP/1.1\r\nHost: hydynamicriskssolution.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://hydynamicriskssolution.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 18 Jul 2026 15:58:47 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Thu, 12 Mar 2026 12:37:14 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b2b37a-1910\"\r\nexpires: Sun, 19 Jul 2026 03:58:47 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6416,"size_decoded":2371,"mime_type":"application/javascript","magic":"ASCII text, with CRLF line terminators","md5":"e211f7b8914dd88438ed593d234ac797","sha1":"88984857bbe5ebff1af003270c92edcb91b8e501","sha256":"56792ed2bae2b6e86ef44147849ae550818d091f0f185186cc01c5f022dfb208","sha512":"8ba6d7d639c641aee4fcd950585078f8348f7d8357fbf3a111bf9029372037ae295b912b84c190767f475e4de14f87a55fed8d2c2da55d008dabb4928e4ad12e","ssdeep":"96:SuDOtqfIIndna31gk3C1Nfluikk0PTEB/NGj6WswVs1SDreHUyrAtRI+x6ZInTPf:bImlvkkmTem6WhVs1SDre0yRY70A","tlshash":"85d1640a6139107b85fb1b77a3a28658fe7a0063344042453d6ccacd1ff1a69b975ff8","first_seen":"2026-07-18T15:59:20.370042Z","last_seen":"2026-07-18T15:59:42.509671Z","times_seen":2,"resource_available":true,"data":null}},"time_used":103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-18","alert":"Phishing Block","trigger":"hydynamicriskssolution.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hydynamicriskssolution.com/images/slide1.jpg","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://hydynamicriskssolution.com/","date":"2026-07-18T15:58:47.130Z","timestamp":1784390327130,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hydynamicriskssolution.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Jul 2026 17:44:30 GMT","end":"Mon, 12 Oct 2026 17:44:29 GMT"},"fingerprint":{"sha1":"C0:47:41:FA:33:D2:E9:25:D7:20:55:7F:D8:8C:DE:53:4B:EF:07:71","sha256":"8C:4F:17:6D:9B:23:CA:72:7D:0F:EB:C5:1C:F6:E7:9D:97:CB:9B:1E:43:67:66:D5:95:A8:73:DE:E7:11:AF:48"}}},"request":{"raw":"GET /images/slide1.jpg HTTP/1.1\r\nHost: hydynamicriskssolution.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://hydynamicriskssolution.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 18 Jul 2026 15:58:47 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 12 Mar 2026 12:17:50 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b2aeee-20d73a\"\r\nexpires: Mon, 17 Aug 2026 15:58:47 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2152250,"size_decoded":1779598,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=33, height=2592, bps=410, PhotometricInterpretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D200, orientation=upper-left, width=3872], baseline, precision 8, 3872x2592, components 3","md5":"5de6e8b54af01ef56a298a5ed53468d4","sha1":"b261f714e625182c96cf75b3cd705809e01b9271","sha256":"008e9deee8204b104b5ecec1bb282fb3a545b5feb45e90107454558af0d39271","sha512":"c22b95c839a2b522330ce5d69c70a10e57f0bcb2652355126a4d5c9e8dfdb2377f5e00f42cb0dc754a592b1edaf7aa8bf7b9a8f3d267ff96a71354865e8bc82a","ssdeep":"12288:HWyQUU3M1Pf8cIJnXC4BIzZZdneajSNosuysL8LzKqVzLrSGsF8AHMtkbma:HROmL/PeiSNos48Lz1VzLrc8AHMtGma","tlshash":"6d252ea18c75bb16ea16081863916bef145c2d6f17f8535ca86ece8f3153cea31ef841","first_seen":"2026-07-18T15:59:20.371989Z","last_seen":"2026-07-18T15:59:42.502006Z","times_seen":2,"resource_available":false,"data":null}},"time_used":200,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":200,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-18","alert":"Phishing Block","trigger":"hydynamicriskssolution.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hydynamicriskssolution.com/images/slide4.jpg","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://hydynamicriskssolution.com/","date":"2026-07-18T15:58:47.137Z","timestamp":1784390327137,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hydynamicriskssolution.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Jul 2026 17:44:30 GMT","end":"Mon, 12 Oct 2026 17:44:29 GMT"},"fingerprint":{"sha1":"C0:47:41:FA:33:D2:E9:25:D7:20:55:7F:D8:8C:DE:53:4B:EF:07:71","sha256":"8C:4F:17:6D:9B:23:CA:72:7D:0F:EB:C5:1C:F6:E7:9D:97:CB:9B:1E:43:67:66:D5:95:A8:73:DE:E7:11:AF:48"}}},"request":{"raw":"GET /images/slide4.jpg HTTP/1.1\r\nHost: hydynamicriskssolution.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://hydynamicriskssolution.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 18 Jul 2026 15:58:47 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 12 Mar 2026 11:56:38 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b2a9f6-40fa97\"\r\nexpires: Mon, 17 Aug 2026 15:58:47 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4258455,"size_decoded":4050948,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=33, height=2592, bps=410, PhotometricInterpretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D200, orientation=upper-left, width=3872], baseline, precision 8, 3872x2592, components 3","md5":"b85939e7213babd1937d62a3428cc4b6","sha1":"383774d32344a4871eb65f1c7d3b7ea8ce44ab67","sha256":"c91e214cbbf55009929c70e1af6cdcef9184a9b2aef60ca42276f85af1b58999","sha512":"f2cd4a6e52f11a1a4ce5b08c041ea1372f7cf119374d18fadb7d2e43871d10bbd7f38cc23c66e5a6035c38e99b2fc686c338ec76b30cc9c1d6f9478670b544b5","ssdeep":"24576:egueNX2jWPo6Bk6nhGBwnsxbpnXk+iNCqL:egvl2jWny/UMpnXQCqL","tlshash":"a3251ca298707f12fd664d1463a16eee141c296f17f8134ca85edf8b7153dea30af842","first_seen":"2026-07-18T15:59:20.373032Z","last_seen":"2026-07-18T15:59:42.492416Z","times_seen":2,"resource_available":false,"data":null}},"time_used":287,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":287,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-18","alert":"Phishing Block","trigger":"hydynamicriskssolution.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hydynamicriskssolution.com/images/slide5.jpg","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://hydynamicriskssolution.com/","date":"2026-07-18T15:58:47.139Z","timestamp":1784390327139,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hydynamicriskssolution.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Jul 2026 17:44:30 GMT","end":"Mon, 12 Oct 2026 17:44:29 GMT"},"fingerprint":{"sha1":"C0:47:41:FA:33:D2:E9:25:D7:20:55:7F:D8:8C:DE:53:4B:EF:07:71","sha256":"8C:4F:17:6D:9B:23:CA:72:7D:0F:EB:C5:1C:F6:E7:9D:97:CB:9B:1E:43:67:66:D5:95:A8:73:DE:E7:11:AF:48"}}},"request":{"raw":"GET /images/slide5.jpg HTTP/1.1\r\nHost: hydynamicriskssolution.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://hydynamicriskssolution.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 18 Jul 2026 15:58:47 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Thu, 12 Mar 2026 12:17:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b2aec0-5b93c4\"\r\nexpires: Mon, 17 Aug 2026 15:58:47 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":6001604,"size_decoded":5968708,"mime_type":"image/jpeg","magic":"JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=11, manufacturer=NIKON CORPORATION, model=NIKON D90, orientation=upper-left, xresolution=180, yresolution=188, resolutionunit=2, software=Ver.1.00 , datetime=2020:02:01 11:11:39, GPS-Data], baseline, precision 8, 4288x2848, components 3","md5":"9eef1577be7dddd80b1c6cd0d1898a22","sha1":"ab9afe93ea8ed2d1ccb149d18ba98a1793d0dc7b","sha256":"f28e79708d5391b798ddf3590e22795ec4e45fe8949784ca5c9fc2b364d457c5","sha512":"74f7bccd48d99c674a0f7f3bbeab6a2f78c7a2ae6c799d41192ad42c353879cf7ae026df6a1e4ed6d8c2c5348965bbb6ddbe89b179b8e295060fd2fc1db07759","ssdeep":"24576:WsIZh2B7v5PhiQe3avleBsXF6w50r9mQBbL84uhjp6I6OYZlFIRXvnLHJn:WhZh2BVhirWN5GYQBv8tjpF63VSXvN","tlshash":"312523cbefde1032de861330f426059b8ff91a5c4cf94292113510bf6e9a64e29e967c","first_seen":"2026-07-18T15:59:20.374373Z","last_seen":"2026-07-18T15:59:42.495194Z","times_seen":2,"resource_available":false,"data":null}},"time_used":286,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":286,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-18","alert":"Phishing Block","trigger":"hydynamicriskssolution.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"hydynamicriskssolution.com/styles.css","fqdn":"hydynamicriskssolution.com","domain":"hydynamicriskssolution.com","tld":"com"},"ip":{"addr":"162.35.175.117","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://hydynamicriskssolution.com/","date":"2026-07-18T15:58:47.012Z","timestamp":1784390327012,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"hydynamicriskssolution.com","organization":""},"issuer":{"commonName":"YR2","organization":"Let's Encrypt"},"validity":{"start":"Tue, 14 Jul 2026 17:44:30 GMT","end":"Mon, 12 Oct 2026 17:44:29 GMT"},"fingerprint":{"sha1":"C0:47:41:FA:33:D2:E9:25:D7:20:55:7F:D8:8C:DE:53:4B:EF:07:71","sha256":"8C:4F:17:6D:9B:23:CA:72:7D:0F:EB:C5:1C:F6:E7:9D:97:CB:9B:1E:43:67:66:D5:95:A8:73:DE:E7:11:AF:48"}}},"request":{"raw":"GET /styles.css HTTP/1.1\r\nHost: hydynamicriskssolution.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://hydynamicriskssolution.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sat, 18 Jul 2026 15:58:47 GMT\r\ncontent-type: text/css\r\nlast-modified: Thu, 12 Mar 2026 13:10:02 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69b2bb2a-75ec\"\r\nexpires: Sun, 19 Jul 2026 03:58:47 GMT\r\ncache-control: max-age=43200\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":30188,"size_decoded":5354,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF line terminators","md5":"375e364c549cf31c479fed76671dd42c","sha1":"aae29c63892e430d621db9a1e8931f48ae2b4fa0","sha256":"5273768c12a94305308b221f4c83161d48d0cd068a333751237945d4d5a4b829","sha512":"c052132b67d82397c329560258732b572bd99bc085ccc14a417775de92812277ef23cef027431748bfc60ccf619097fab886cea187a117112fea0872b1c4da25","ssdeep":"192:GnBhnlFCNNNqx6SKwECfI8itGXM/0cttIWljxmtw9RX3/KDoMJMrE5w3bdfM34Hm:MVd6A","tlshash":"4fd2620d961655135637eb786fb28709f3c4c023ce06536d7bda62458ff62b862a2f8c","first_seen":"2026-07-18T15:59:20.375592Z","last_seen":"2026-07-18T15:59:42.49756Z","times_seen":2,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":103,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-18","alert":"Phishing Block","trigger":"hydynamicriskssolution.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-18","alert":"Sinkholed","trigger":"hydynamicriskssolution.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}
