{"report_id":"3f44c54e-c0e1-453a-8be2-17afeb0d1754","version":6,"status":"done","tags":[],"date":"2026-05-26T17:43:09Z","url":{"schema":"http","addr":"labs.zerotechnologyusa.com","fqdn":"labs.zerotechnologyusa.com","domain":"zerotechnologyusa.com","tld":"com"},"ip":{"addr":"159.203.30.67","port":0,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Canada","country_code":"CA"},"final":{"url":{"schema":"https","addr":"labs.zerotechnologyusa.com/en/","fqdn":"labs.zerotechnologyusa.com","domain":"zerotechnologyusa.com","tld":"com"},"title":"Forensic crypto analysis for wallets, encrypted artifacts, and cryptologic recovery paths","dom":{"size":10657,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (332)","md5":"fcb90abe284c2644641483911655dd01","sha1":"a0c8a8b1283988e09e3fedeb3c600d5b4bddbb8e","sha256":"404bc79ac19674bf6a18b41a298f7062242d5704957fc43c11f78f236a661654","sha512":"95a954d6cda3beceaa306a9dfda391fad168c3e15f8586831cfb9e928bf259671fc20368910aecb6a05108aa2d51cea814ee1a742ae402ec3e65386bd1e990a4","ssdeep":"96:nhRgdO5SctpNVIQK0maOSIGdF5oON+Kgl0kFC8T5t09MHagjcmxnT+HBy4V5vrJx:hRgdF4IQlTEGdom+Kuuw09JiXxnTexXr","tlshash":"6922625125f0663642d382d66db2272faed2a90bd04e1904b35c0fa40fa1edacc7313e","dom_hash":"domhashbbc6ffa7ad35590f9968cf3bbde74a93","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"labs.zerotechnologyusa.com","fqdn":"labs.zerotechnologyusa.com","domain":"zerotechnologyusa.com","tld":"com"},"ip":{"addr":"159.203.30.67","port":0,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Canada","country_code":"CA"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-30T17:43:09Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-26","alert":"Sinkholed","trigger":"labs.zerotechnologyusa.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-26","alert":"Sinkholed","trigger":"labs.zerotechnologyusa.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"images.unsplash.com","ip":{"addr":"151.101.66.208","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2013-05-29","domain_rank":86676,"first_seen":"2015-08-06T06:03:25Z","last_seen":"2026-05-20T15:51:07.174984Z","alert_count":0,"request_count":3,"received_data":337652,"sent_data":1512,"comment":"","tags":null,"fingerprints":null},{"fqdn":"labs.zerotechnologyusa.com","ip":{"addr":"159.203.30.67","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Canada","country_code":"CA"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-03-28T13:28:51.967496Z","last_seen":"2026-03-28T13:28:51.967496Z","alert_count":8,"request_count":4,"received_data":33242,"sent_data":1915,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"labs.zerotechnologyusa.com/en/","fqdn":"labs.zerotechnologyusa.com","domain":"zerotechnologyusa.com","tld":"com"},"ip":{"addr":"159.203.30.67","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Canada","country_code":"CA"},"introduction_type":"scriptElement","is_inline":true,"md5":"adc5ba2f205ab8c34843e5fe2859b207","sha1":"43273f64c52811ebc582f236d63ebb3e471050e0","sha256":"7015ffd0c691dd3623150e906ad5f79af505e24d304178be3ede7b1415e1f2bc","sha512":"d5c3351abcb403a98beddfdb665e93261c790d7c15ed000d7fc41639f98e5d794c605bdaf30faba01daaf47bff5d11237758288f48ee165369eebfeecab0686e","ssdeep":"","tlshash":"bb0128df10e7269162ea32a75a8f3244312604db3105e8153f0caf505f29e2e91a7eec","size":757,"data":"","first_seen":"2026-03-28T13:28:55.744709Z","last_seen":"2026-05-26T17:43:10.594241Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"images.unsplash.com/photo-1551288049-bebda4e38f71?auto=format\u0026fit=crop\u0026w=1400\u0026q=80","fqdn":"images.unsplash.com","domain":"unsplash.com","tld":"com"},"ip":{"addr":"151.101.66.208","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://labs.zerotechnologyusa.com/en/","date":"2026-05-26T17:42:48.217Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"images.unsplash.com","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q3","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 Aug 2025 01:21:13 GMT","end":"Sun, 13 Sep 2026 01:21:12 GMT"},"fingerprint":{"sha1":"46:28:F0:69:6F:53:FC:9F:BA:6A:73:37:D0:D7:C8:87:AE:06:47:7A","sha256":"80:93:A2:9A:83:84:21:A8:A0:ED:D9:72:A8:E3:4D:EC:8E:A5:E4:4B:42:68:17:09:AA:D6:6C:7C:1B:9D:2A:48"}}},"request":{"raw":"GET /photo-1551288049-bebda4e38f71?auto=format\u0026fit=crop\u0026w=1400\u0026q=80 HTTP/1.1\r\nHost: images.unsplash.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://labs.zerotechnologyusa.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-imgix-id: 1d99870da29170dd4081ce119acf0c0dce558eee\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 20 May 2026 11:57:21 GMT\r\nserver: imgix\r\ndate: Tue, 26 May 2026 17:42:48 GMT\r\nage: 539127\r\naccept-ranges: bytes\r\ncontent-type: image/avif\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nx-served-by: cache-fra-eddf8230087-FRA, cache-hel1410028-HEL\r\nx-cache: HIT, HIT\r\nvary: Accept, User-Agent\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 68129\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":68129,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"dfe2b2570c2d61d439e6624b74c6d9d1","sha1":"3deda1595286143fb24c41cea70d2164aefb943c","sha256":"0f68b4d2d66fb05bfb6b2e558b1726b86dc62ca739991a027cb0f5ab4a92b917","sha512":"f954baa971eafe3e435e239721446cf6ee48d20bc05fa216cc4a536f065b770119779c5c3d1a82c7db383eb958dd4c28478456ce6f2ba2e3ee6d8e11218c4aae","ssdeep":"1536:EIvTnjzNj0mqVTu60ebnzmtase7uDuFnf1ouU8SLuQp/K7wx:EKTjWmqVTl7nz+JWfSufNEr","tlshash":"5263011aca08be4fdd2760b40660dfc6b9e17fb5c035b006b8816b2d1d9e646879f762","first_seen":"2026-03-28T13:28:55.742496Z","last_seen":"2026-05-26T17:43:10.588487Z","times_seen":3,"resource_available":false,"data":null}},"time_used":248,"timings":{"blocked":80,"dns":39,"connect":15,"send":0,"wait":66,"receive":18,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"labs.zerotechnologyusa.com/favicon.ico","fqdn":"labs.zerotechnologyusa.com","domain":"zerotechnologyusa.com","tld":"com"},"ip":{"addr":"159.203.30.67","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://labs.zerotechnologyusa.com/en/","date":"2026-05-26T17:42:48.427Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"labs.zerotechnologyusa.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 16 May 2026 03:38:11 GMT","end":"Fri, 14 Aug 2026 03:38:10 GMT"},"fingerprint":{"sha1":"E2:7E:41:C1:75:BE:B6:1A:40:5B:D3:5E:8F:99:C4:98:6E:65:3B:CE","sha256":"08:68:04:A1:A6:0D:95:27:03:00:33:4B:A2:5C:75:F0:73:AA:D8:23:F1:EC:1B:8B:46:DC:44:78:1F:88:26:98"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: labs.zerotechnologyusa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://labs.zerotechnologyusa.com/en/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 308 Permanent Redirect\r\nserver: nginx/1.24.0 (Ubuntu)\r\ndate: Tue, 26 May 2026 17:42:48 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 335\r\nlocation: https://labs.zerotechnologyusa.com,labs.zerotechnologyusa.com/favicon.ico/\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"308","status_text":"Permanent Redirect","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-09T00:17:25.723561Z","times_seen":16254457,"resource_available":true,"data":null}},"time_used":115,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":115,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-26","alert":"Sinkholed","trigger":"labs.zerotechnologyusa.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-26","alert":"Sinkholed","trigger":"labs.zerotechnologyusa.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"labs.zerotechnologyusa.com/en/","fqdn":"labs.zerotechnologyusa.com","domain":"zerotechnologyusa.com","tld":"com"},"ip":{"addr":"159.203.30.67","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Canada","country_code":"CA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-26T17:42:47.795Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"labs.zerotechnologyusa.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 16 May 2026 03:38:11 GMT","end":"Fri, 14 Aug 2026 03:38:10 GMT"},"fingerprint":{"sha1":"E2:7E:41:C1:75:BE:B6:1A:40:5B:D3:5E:8F:99:C4:98:6E:65:3B:CE","sha256":"08:68:04:A1:A6:0D:95:27:03:00:33:4B:A2:5C:75:F0:73:AA:D8:23:F1:EC:1B:8B:46:DC:44:78:1F:88:26:98"}}},"request":{"raw":"GET /en/ HTTP/1.1\r\nHost: labs.zerotechnologyusa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.24.0 (Ubuntu)\r\ndate: Tue, 26 May 2026 17:42:47 GMT\r\ncontent-type: text/html; charset=utf-8\r\nvary: Cookie\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":10680,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (332)","md5":"b834869e9676c6d0e5ca3dfe830fe28c","sha1":"8eac6407f429e898c71f14d7d252ad230d3ee697","sha256":"b03541e2cc7940eecc6454011acc39a2bb1b3ad474b7b91e5d9b3fda2e4419cd","sha512":"899290ba827cb1d8f5cba6d53d18a010244bf15470fac16a768d07a91fa3860d1963b12568c8c4eee6dd0ad98ea3fc43403540a586ae400ad1f34e37892957bd","ssdeep":"192:vRgdF4MRHVEGdom+Kuuw09JiXxnTexXZz:vRgdFwGdDTuuoEp","tlshash":"2322625125f0663642d382d66db2272fafd2a90bd04e1904b35c0fa41fa1edacc7313e","first_seen":"2026-05-26T17:43:10.590361Z","last_seen":"2026-05-26T17:43:10.590361Z","times_seen":1,"resource_available":true,"data":null}},"time_used":113,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":113,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-26","alert":"Sinkholed","trigger":"labs.zerotechnologyusa.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-26","alert":"Sinkholed","trigger":"labs.zerotechnologyusa.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"labs.zerotechnologyusa.com/static/style.css","fqdn":"labs.zerotechnologyusa.com","domain":"zerotechnologyusa.com","tld":"com"},"ip":{"addr":"159.203.30.67","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Canada","country_code":"CA"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://labs.zerotechnologyusa.com/en/","date":"2026-05-26T17:42:48.090Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"labs.zerotechnologyusa.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 16 May 2026 03:38:11 GMT","end":"Fri, 14 Aug 2026 03:38:10 GMT"},"fingerprint":{"sha1":"E2:7E:41:C1:75:BE:B6:1A:40:5B:D3:5E:8F:99:C4:98:6E:65:3B:CE","sha256":"08:68:04:A1:A6:0D:95:27:03:00:33:4B:A2:5C:75:F0:73:AA:D8:23:F1:EC:1B:8B:46:DC:44:78:1F:88:26:98"}}},"request":{"raw":"GET /static/style.css HTTP/1.1\r\nHost: labs.zerotechnologyusa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://labs.zerotechnologyusa.com/en/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx/1.24.0 (Ubuntu)\r\ndate: Tue, 26 May 2026 17:42:48 GMT\r\ncontent-type: text/css\r\ncontent-length: 10924\r\nlast-modified: Sun, 15 Mar 2026 03:34:42 GMT\r\netag: \"69b628d2-2aac\"\r\nexpires: Tue, 02 Jun 2026 17:42:48 GMT\r\ncache-control: max-age=604800, public\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":10924,"size_decoded":0,"mime_type":"text/css","magic":"assembler source, ASCII text","md5":"dd7ba79f87e2c8b590953006815b7d0f","sha1":"2289d2d2020275c6b1db9da280d70bffd6f99cd6","sha256":"ea3dd2cdefc87733a12f6efa254f8e012d6dd295014a3ba9a68931384c28d26e","sha512":"b1d560fcb4eae2acdc69d587741011ef8e033a8947a0555bff7807a3b3ad7a0b5881b1459d8a6149187c0c49f5b9a558f3bb45070d9cccb99b906ca5fa674174","ssdeep":"192:IyEeHSpWc00C7nOkUizPxQIQmAIcPEsrdoE6KVQW+GFJGOWVgwxn4hPjMSjXWByh:qezxRLNNA9jAKxkGLpzWIjz/Z","tlshash":"0a3273d156615228b42f908994c7f98eb37c8417ca0fda7defe5209caf841de9a64f0c","first_seen":"2026-03-28T13:28:55.73251Z","last_seen":"2026-05-26T17:43:10.591331Z","times_seen":3,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":109,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-26","alert":"Sinkholed","trigger":"labs.zerotechnologyusa.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-26","alert":"Sinkholed","trigger":"labs.zerotechnologyusa.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"images.unsplash.com/photo-1639762681485-074b7f938ba0?auto=format\u0026fit=crop\u0026w=1600\u0026q=80","fqdn":"images.unsplash.com","domain":"unsplash.com","tld":"com"},"ip":{"addr":"151.101.66.208","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://labs.zerotechnologyusa.com/en/","date":"2026-05-26T17:42:48.213Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"images.unsplash.com","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q3","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 Aug 2025 01:21:13 GMT","end":"Sun, 13 Sep 2026 01:21:12 GMT"},"fingerprint":{"sha1":"46:28:F0:69:6F:53:FC:9F:BA:6A:73:37:D0:D7:C8:87:AE:06:47:7A","sha256":"80:93:A2:9A:83:84:21:A8:A0:ED:D9:72:A8:E3:4D:EC:8E:A5:E4:4B:42:68:17:09:AA:D6:6C:7C:1B:9D:2A:48"}}},"request":{"raw":"GET /photo-1639762681485-074b7f938ba0?auto=format\u0026fit=crop\u0026w=1600\u0026q=80 HTTP/1.1\r\nHost: images.unsplash.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://labs.zerotechnologyusa.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-imgix-id: dc6761ae6d9d3a5ee14aad6dce751412206bcf3e\r\ncache-control: public, max-age=31536000\r\nlast-modified: Tue, 26 May 2026 03:03:29 GMT\r\nserver: imgix\r\ndate: Tue, 26 May 2026 17:42:48 GMT\r\nage: 52759\r\naccept-ranges: bytes\r\ncontent-type: image/avif\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nx-served-by: cache-fra-eddf8230144-FRA, cache-hel1410028-HEL\r\nx-cache: HIT, MISS\r\nvary: Accept, User-Agent\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 171541\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":171541,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"727b495be1c3986fa52a5bfec1cb5468","sha1":"b9a6b558defb006f474cf9a4f475015fcbe0f39e","sha256":"809b0963b191d606977c83b2f8ed854f4fa33b23cb499d57b5987c3642c47673","sha512":"775b43aec409d80f167cb1ed6bc7699ed2ff6d2cddc9dcff082878dc2f902dd8e095cfad989271c77f6f607a3c35c52ba40fd0283e47e51496bc93d9bb18540d","ssdeep":"3072:iVQhRH7hpTOIABWn4SDDapaHuUyb/Mh6KoCW/QHD4ac7UrRbQ/dBDRq0tWRGc3g5:xhFOmVDNTybdRLQTc7UrByddRq3g5","tlshash":"72f312bcd96b07ccf8e592f5bd7d83925000044479aa37b5b661b7933260bfc1a6fa12","first_seen":"2026-05-26T17:43:10.592369Z","last_seen":"2026-06-07T22:52:49.590654Z","times_seen":2,"resource_available":false,"data":null}},"time_used":245,"timings":{"blocked":81,"dns":37,"connect":15,"send":0,"wait":42,"receive":43,"ssl":23},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"images.unsplash.com/photo-1518546305927-5a555bb7020d?auto=format\u0026fit=crop\u0026w=1400\u0026q=80","fqdn":"images.unsplash.com","domain":"unsplash.com","tld":"com"},"ip":{"addr":"151.101.66.208","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://labs.zerotechnologyusa.com/en/","date":"2026-05-26T17:42:48.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"images.unsplash.com","organization":""},"issuer":{"commonName":"GlobalSign Atlas R3 DV TLS CA 2025 Q3","organization":"GlobalSign nv-sa"},"validity":{"start":"Tue, 12 Aug 2025 01:21:13 GMT","end":"Sun, 13 Sep 2026 01:21:12 GMT"},"fingerprint":{"sha1":"46:28:F0:69:6F:53:FC:9F:BA:6A:73:37:D0:D7:C8:87:AE:06:47:7A","sha256":"80:93:A2:9A:83:84:21:A8:A0:ED:D9:72:A8:E3:4D:EC:8E:A5:E4:4B:42:68:17:09:AA:D6:6C:7C:1B:9D:2A:48"}}},"request":{"raw":"GET /photo-1518546305927-5a555bb7020d?auto=format\u0026fit=crop\u0026w=1400\u0026q=80 HTTP/1.1\r\nHost: images.unsplash.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://labs.zerotechnologyusa.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-imgix-id: a3b0e59c26c62151065a9aa74766b19235ff45f9\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 25 May 2026 08:27:18 GMT\r\nserver: imgix\r\ndate: Tue, 26 May 2026 17:42:48 GMT\r\nage: 119729\r\naccept-ranges: bytes\r\ncontent-type: image/avif\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nx-served-by: cache-fra-eddf8230202-FRA, cache-hel1410028-HEL\r\nx-cache: HIT, MISS\r\nvary: Accept, User-Agent\r\nalt-svc: h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400\r\ncontent-length: 96099\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":96099,"size_decoded":0,"mime_type":"image/avif","magic":"ISO Media, AVIF Image","md5":"6b75c20b91db0e9ed1404ea39b21960d","sha1":"faacb125ee66f44508234cc71e63292c7804c21e","sha256":"1d8c4192f7184f74ead8fe65e72050d6675b63bec3a778837969df8f7666d5ec","sha512":"d991c2d5f74e1d43e839ef033941682a6be7a7675560c1819b5a1e672a1ffba840f760588f4e854c5f5d9a2314b3c9b336509ab00c0cfc522aceed70ecafaa78","ssdeep":"1536:Gs61Pn5axzfvLO7LXtfCfdq9O8oSzHSnLLeNbT6BhRNbylwFy:GSxzfKXt6fdqgnSzynLL2bTwRUeo","tlshash":"5d93129ebd69873eec7a67bd0838e75034b55716731aa8908994ef8c016bcd053ce316","first_seen":"2026-05-26T17:43:10.59321Z","last_seen":"2026-05-26T17:43:10.59321Z","times_seen":1,"resource_available":false,"data":null}},"time_used":271,"timings":{"blocked":100,"dns":40,"connect":29,"send":0,"wait":64,"receive":3,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"labs.zerotechnologyusa.com/","fqdn":"labs.zerotechnologyusa.com","domain":"zerotechnologyusa.com","tld":"com"},"ip":{"addr":"159.203.30.67","port":443,"asn":14061,"as":"DIGITALOCEAN-ASN","country":"Canada","country_code":"CA"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-26T17:42:47.388Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"labs.zerotechnologyusa.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Sat, 16 May 2026 03:38:11 GMT","end":"Fri, 14 Aug 2026 03:38:10 GMT"},"fingerprint":{"sha1":"E2:7E:41:C1:75:BE:B6:1A:40:5B:D3:5E:8F:99:C4:98:6E:65:3B:CE","sha256":"08:68:04:A1:A6:0D:95:27:03:00:33:4B:A2:5C:75:F0:73:AA:D8:23:F1:EC:1B:8B:46:DC:44:78:1F:88:26:98"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: labs.zerotechnologyusa.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\nserver: nginx/1.24.0 (Ubuntu)\r\ndate: Tue, 26 May 2026 17:42:47 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 195\r\nlocation: /en/\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":[{"name":"Nginx:1.24.0","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"Ubuntu","description":"Ubuntu is a free and open-source operating system on Linux for the enterprise server, desktop, cloud, and IoT.","website":"https://www.ubuntu.com/server","common_platform_enumeration":"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*","icon":"Ubuntu.svg","categories":["Operating systems"]}],"data":{"size":10680,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-09T00:17:25.723561Z","times_seen":16254457,"resource_available":true,"data":null}},"time_used":694,"timings":{"blocked":292,"dns":54,"connect":111,"send":0,"wait":110,"receive":0,"ssl":122},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-05-26","alert":"Sinkholed","trigger":"labs.zerotechnologyusa.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-05-26","alert":"Sinkholed","trigger":"labs.zerotechnologyusa.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}