{"report_id":"361bbdf9-d358-480d-ba44-b369e8b6c8cb","version":6,"status":"done","tags":[],"date":"2024-10-16T17:04:09Z","url":{"schema":"http","addr":"Xx69xx.com","fqdn":"Xx69xx.com","domain":"xx69xx.com","tld":"com"},"ip":{"addr":"162.254.215.111","port":0,"asn":19683,"as":"FORENDATA","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"xx69xx.com/","fqdn":"xx69xx.com","domain":"xx69xx.com","tld":"com"},"title":"Doctor assists with hymen examination and defloration of virgin girl"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"","expires_at":"2026-12-25T17:04:09Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"xx69xx.com","ip":{"addr":"162.254.215.111","port":443,"asn":19683,"as":"FORENDATA","country":"United States","country_code":"US"},"domain_registered":"2010-03-10","domain_rank":0,"first_seen":"2024-10-16T17:04:09.792836Z","last_seen":"2024-10-16T17:04:09.792836Z","alert_count":0,"request_count":2,"received_data":1375,"sent_data":892,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"Mnemonic Secure DNS","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"xx69xx.com/","fqdn":"xx69xx.com","domain":"xx69xx.com","tld":"com"},"ip":{"addr":"162.254.215.111","port":443,"asn":19683,"as":"FORENDATA","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2024-10-16T17:03:43.938Z","timestamp":1729098223938,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xx69xx.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Thu, 10 Oct 2024 09:52:08 GMT","end":"Wed, 08 Jan 2025 09:52:07 GMT"},"fingerprint":{"sha1":"27:2A:44:95:50:8B:85:72:CF:79:0B:6C:BC:53:A4:1F:06:02:A8:2C","sha256":"DE:23:AD:D2:06:18:E0:78:62:65:C7:53:C7:CC:04:E7:EF:B7:E0:F5:3F:BF:D8:5F:60:19:B9:D9:FD:D2:70:27"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: xx69xx.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.16.1\r\ndate: Wed, 16 Oct 2024 17:03:44 GMT\r\ncontent-type: text/html\r\ncontent-length: 845\r\nlast-modified: Wed, 14 Apr 2021 13:33:52 GMT\r\netag: \"6076ef40-34d\"\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":845,"size_decoded":845,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"0b35cbc4f617f9ab9210948b73e10f64","sha1":"619362563e655505bd130e220ae721a6afeb7f61","sha256":"d0222f980bf4d71e3dca915499b698ea0be74a7e6e26332a3da81fb091222d0f","sha512":"c8bb86d0c6f604cffc763b371a337e5291ceff6da6b32bb0b70c0140229d243af6dbe405f8edb0e6fac8dc71909c2c6f0480a8eafbea242844c5b0ed69c7b811","ssdeep":"","tlshash":"3d0141ef45034c1649a35513e17277d0feb300c533a98ea420b2f63b3914176a7272cd","first_seen":"2024-10-16T17:04:12.985633Z","last_seen":"2024-10-16T17:04:12.985633Z","times_seen":1,"resource_available":false,"data":null}},"time_used":985,"timings":{"blocked":437,"dns":0,"connect":109,"send":0,"wait":110,"receive":0,"ssl":325},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xx69xx.com/favicon.ico","fqdn":"xx69xx.com","domain":"xx69xx.com","tld":"com"},"ip":{"addr":"162.254.215.111","port":443,"asn":19683,"as":"FORENDATA","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xx69xx.com/","date":"2024-10-16T17:03:44.869Z","timestamp":1729098224869,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xx69xx.com","organization":""},"issuer":{"commonName":"R10","organization":"Let's Encrypt"},"validity":{"start":"Thu, 10 Oct 2024 09:52:08 GMT","end":"Wed, 08 Jan 2025 09:52:07 GMT"},"fingerprint":{"sha1":"27:2A:44:95:50:8B:85:72:CF:79:0B:6C:BC:53:A4:1F:06:02:A8:2C","sha256":"DE:23:AD:D2:06:18:E0:78:62:65:C7:53:C7:CC:04:E7:EF:B7:E0:F5:3F:BF:D8:5F:60:19:B9:D9:FD:D2:70:27"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: xx69xx.com\r\nUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xx69xx.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx/1.16.1\r\ndate: Wed, 16 Oct 2024 17:03:44 GMT\r\ncontent-type: text/html\r\ncontent-length: 153\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":153,"size_decoded":153,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"a1ed5ecb9c651451520019b3747a06ef","sha1":"724e59314a0890297915c1010e38e3267cdd810e","sha256":"1b47c0dc50d20d7239392e8e3917cf1340aa2acf53b7e6a84ee56714471e26f4","sha512":"c9cfa80a019911ce4f3b34d62d5b92db61bb1e51a2bd4a7b6aafb503a367cd594a44d10e9dc9cd97965a2519502c6ec273f1ad66f1e07de7a796f777d86c6fe6","ssdeep":"","tlshash":"d8c02b2d36537c4cc5a3317462c3b090d0d6933774fa41114440814331cf2998ac3397","first_seen":"2023-04-05T16:30:55Z","last_seen":"2026-05-20T19:36:30.598681Z","times_seen":599,"resource_available":true,"data":null}},"time_used":111,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":110,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}