{"report_id":"4926db2c-d7fa-4812-bf4b-bf7bfa4df564","version":6,"status":"done","tags":[],"date":"2026-05-20T12:51:23Z","url":{"schema":"http","addr":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","fqdn":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","domain":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","tld":"herokuapp.com"},"ip":{"addr":"34.201.81.34","port":0,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/","fqdn":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","domain":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","tld":"herokuapp.com"},"title":"Banco Promerica - Banca en LĂ­nea","dom":{"size":7335,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"9fcfaffd4d6278ceeb73e1d0f4b6d71b","sha1":"533139a259300634671b0fda1e7d9deee73f6161","sha256":"bff2e3500edd20531f7946c5d970d7cd7f72274435f4e97f8514efe2b4fcd796","sha512":"978cf55c10db7f593a66daa7338524bfbe2de8e5180760d02931287a01d62915268e969a10842f174cdf12c5e66d221e07d90f4220da02749f4be36eefa5c8d7","ssdeep":"96:BfKKu7GeUFjrBcillYgLC05uldHyJide7QdF6QLQP3IQtd9Qn6vyCNzFs9SCC3TY:zcJom6lx20EldSIdvuIQtde6a4FsshyJ","tlshash":"33e1739246b708867967c8146fe7865931589007d15fda583f8c73accf853c5da93b8c","dom_hash":"domhashca42b658f6a5827803a3b0917793af25","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","fqdn":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","domain":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","tld":"herokuapp.com"},"ip":{"addr":"34.201.81.34","port":0,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-24T12:51:23Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-20","alert":"Sinkholed","trigger":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-20","alert":"Phishing Block","trigger":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null},"summary":[{"fqdn":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","ip":{"addr":"54.243.129.215","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"domain_registered":"2010-09-19","domain_rank":0,"first_seen":"2026-05-20T12:51:24.711965Z","last_seen":"2026-05-20T12:51:24.711966Z","alert_count":10,"request_count":5,"received_data":1721384,"sent_data":2783,"comment":"","tags":null,"fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/","fqdn":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","domain":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","tld":"herokuapp.com"},"ip":{"addr":"54.243.129.215","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-05-20T12:51:00.350Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.herokuapp.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 31 Dec 2025 00:00:00 GMT","end":"Thu, 28 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CF:30:A6:B6:F2:EC:85:1F:88:2B:05:20:4F:5B:77:A4:B0:67:F1:92","sha256":"93:D1:EA:28:7A:7B:08:B9:38:D7:47:07:5B:14:AE:20:1E:AA:D6:C6:EF:45:0D:EB:8E:04:99:D8:DC:33:92:F0"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nCache-Control: no-store, no-cache, must-revalidate\r\nContent-Type: text/html; charset=UTF-8\r\nDate: Wed, 20 May 2026 12:51:00 GMT\r\nExpires: Thu, 19 Nov 1981 08:52:00 GMT\r\nNel: {\"report_to\":\"heroku-nel\",\"response_headers\":[\"Via\"],\"max_age\":3600,\"success_fraction\":0.01,\"failure_fraction\":0.1}\r\nPragma: no-cache\r\nReport-To: {\"group\":\"heroku-nel\",\"endpoints\":[{\"url\":\"https://nel.heroku.com/reports?s=P5L9%2BQKYflggAbc2xcrG6Qumiyb83r8Q4c43tmVoXew%3D\\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\\u0026ts=1779281460\"}],\"max_age\":3600}\r\nReporting-Endpoints: heroku-nel=\"https://nel.heroku.com/reports?s=P5L9%2BQKYflggAbc2xcrG6Qumiyb83r8Q4c43tmVoXew%3D\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\u0026ts=1779281460\"\r\nServer: Heroku\r\nSet-Cookie: PHPSESSID=179198b3ef612c0c47e86d7841af841c; path=/\r\nVia: 1.1 heroku-router\r\nTransfer-Encoding: chunked\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}],"data":{"size":7349,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"b0ef73cfd725cf4be1d89647ea73eb50","sha1":"f8dfddf0907f837e529b9da976fd9178f90e04f9","sha256":"dd71e782865a80df13adcb1d5d81916a0b293ba27ac227c9eb2dbeb0b7867ae6","sha512":"09e74fc1ecb2e37e1e8232e000a305dcabc51b2025f827c640b71752e400a8d1508f404de30d7a845a0e757eb30b7c2382edf6648fc131be242ede48e648811a","ssdeep":"96:NfKKu7GeUFjrBcillYgLC05uldHyJide7QdF6QLQP3IQtd9Qn6vyCNzFs9SCC3Tn:/cJom6lx20EldSIdvuIQtde6a4FsshZN","tlshash":"f0e183a246b708867967c8146fe78659319d9007d14fda583f8c73accf853c9da93b8c","first_seen":"2026-05-20T07:48:44.107047Z","last_seen":"2026-05-20T12:51:27.012967Z","times_seen":2,"resource_available":true,"data":null}},"time_used":742,"timings":{"blocked":322,"dns":31,"connect":95,"send":0,"wait":97,"receive":0,"ssl":194},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-20","alert":"Sinkholed","trigger":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-20","alert":"Phishing Block","trigger":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/img/bg_x7k2m9.png","fqdn":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","domain":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","tld":"herokuapp.com"},"ip":{"addr":"54.243.129.215","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/","date":"2026-05-20T12:51:00.918Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.herokuapp.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 31 Dec 2025 00:00:00 GMT","end":"Thu, 28 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CF:30:A6:B6:F2:EC:85:1F:88:2B:05:20:4F:5B:77:A4:B0:67:F1:92","sha256":"93:D1:EA:28:7A:7B:08:B9:38:D7:47:07:5B:14:AE:20:1E:AA:D6:C6:EF:45:0D:EB:8E:04:99:D8:DC:33:92:F0"}}},"request":{"raw":"GET /img/bg_x7k2m9.png HTTP/1.1\r\nHost: beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/\r\nCookie: PHPSESSID=179198b3ef612c0c47e86d7841af841c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nAccept-Ranges: bytes\r\nContent-Length: 1699957\r\nContent-Type: image/png\r\nDate: Wed, 20 May 2026 12:51:00 GMT\r\nEtag: \"19f075-6522f55b304c0\"\r\nLast-Modified: Tue, 19 May 2026 17:51:55 GMT\r\nNel: {\"report_to\":\"heroku-nel\",\"response_headers\":[\"Via\"],\"max_age\":3600,\"success_fraction\":0.01,\"failure_fraction\":0.1}\r\nReport-To: {\"group\":\"heroku-nel\",\"endpoints\":[{\"url\":\"https://nel.heroku.com/reports?s=P5L9%2BQKYflggAbc2xcrG6Qumiyb83r8Q4c43tmVoXew%3D\\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\\u0026ts=1779281460\"}],\"max_age\":3600}\r\nReporting-Endpoints: heroku-nel=\"https://nel.heroku.com/reports?s=P5L9%2BQKYflggAbc2xcrG6Qumiyb83r8Q4c43tmVoXew%3D\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\u0026ts=1779281460\"\r\nServer: Heroku\r\nVia: 1.1 heroku-router\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1699957,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1185 x 1024, 8-bit/color RGBA, non-interlaced","md5":"31a601208c513af420acfea5ed4b37c0","sha1":"920595ad5402d1fdb4dbd9b7ff4043f398367fba","sha256":"88c25d587971646d710245ac82e0f8968847280e247caf0a94423f152fabc4cf","sha512":"667670de81ff7779c8eb43cabed1c24bce6d2f07099c97abae9bfbe708fac69cdf037d7d79c52e9d320af6189e8a92d8483824d6a8e515ec868da6004339401e","ssdeep":"24576:Y1SeEDo+TZ5mEl+lYVbAKI6J9sZZ5neNyEJuhiIo5em2Z:Y1SeQo+15mzOVbAVAiZXeNveiII2Z","tlshash":"7c2533512b487c95617a01a35e717c6b29c3e5be27f14a213c6db2bccff4a6174c8a8c","first_seen":"2026-01-17T15:33:01.076224Z","last_seen":"2026-05-20T12:51:27.016528Z","times_seen":4,"resource_available":false,"data":null}},"time_used":824,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":197,"receive":627,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-20","alert":"Sinkholed","trigger":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-20","alert":"Phishing Block","trigger":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/img/lg_p4n8q3.png","fqdn":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","domain":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","tld":"herokuapp.com"},"ip":{"addr":"54.208.186.182","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/","date":"2026-05-20T12:51:00.920Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.herokuapp.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 31 Dec 2025 00:00:00 GMT","end":"Thu, 28 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CF:30:A6:B6:F2:EC:85:1F:88:2B:05:20:4F:5B:77:A4:B0:67:F1:92","sha256":"93:D1:EA:28:7A:7B:08:B9:38:D7:47:07:5B:14:AE:20:1E:AA:D6:C6:EF:45:0D:EB:8E:04:99:D8:DC:33:92:F0"}}},"request":{"raw":"GET /img/lg_p4n8q3.png HTTP/1.1\r\nHost: beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/\r\nCookie: PHPSESSID=179198b3ef612c0c47e86d7841af841c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nAccept-Ranges: bytes\r\nContent-Length: 2132\r\nContent-Type: image/png\r\nDate: Wed, 20 May 2026 12:51:01 GMT\r\nEtag: \"854-6522f55b304c0\"\r\nLast-Modified: Tue, 19 May 2026 17:51:55 GMT\r\nNel: {\"report_to\":\"heroku-nel\",\"response_headers\":[\"Via\"],\"max_age\":3600,\"success_fraction\":0.01,\"failure_fraction\":0.1}\r\nReport-To: {\"group\":\"heroku-nel\",\"endpoints\":[{\"url\":\"https://nel.heroku.com/reports?s=NRqbxzw2wvSv3xvBCPjb0Lg5JEGrylHqZ5OKjXfnwP0%3D\\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\\u0026ts=1779281461\"}],\"max_age\":3600}\r\nReporting-Endpoints: heroku-nel=\"https://nel.heroku.com/reports?s=NRqbxzw2wvSv3xvBCPjb0Lg5JEGrylHqZ5OKjXfnwP0%3D\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\u0026ts=1779281461\"\r\nServer: Heroku\r\nVia: 1.1 heroku-router\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":2132,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 281 x 56, 8-bit colormap, non-interlaced","md5":"5204f3d7e40be6fc34170c5b3449be0e","sha1":"5b280675bc7c82ce921784b77476c2a6adbb4525","sha256":"1ad287c094b1b5fbe81f1fcf26f6da3f6f49edfa033cc47f8a785735009aa1c8","sha512":"326f1f52a362e07fb4365aea2f877ab1ff31ac22c2f9becd3ffe5223f9bd4526edb505af48b58eac3e798eda959275ccc7026c780c02c64aca3b70eafdcd7163","ssdeep":"","tlshash":"b241fcef10ea2de1cda5ed23032e4c64a7b0d76e20da404977a27c08a57becc5217251","first_seen":"2026-01-17T15:33:01.058869Z","last_seen":"2026-05-20T12:51:27.0186Z","times_seen":4,"resource_available":false,"data":null}},"time_used":673,"timings":{"blocked":288,"dns":1,"connect":93,"send":0,"wait":95,"receive":0,"ssl":192},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-20","alert":"Sinkholed","trigger":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-20","alert":"Phishing Block","trigger":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/img/hlp_r5t1w6.png","fqdn":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","domain":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","tld":"herokuapp.com"},"ip":{"addr":"54.208.186.182","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/","date":"2026-05-20T12:51:00.921Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.herokuapp.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 31 Dec 2025 00:00:00 GMT","end":"Thu, 28 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CF:30:A6:B6:F2:EC:85:1F:88:2B:05:20:4F:5B:77:A4:B0:67:F1:92","sha256":"93:D1:EA:28:7A:7B:08:B9:38:D7:47:07:5B:14:AE:20:1E:AA:D6:C6:EF:45:0D:EB:8E:04:99:D8:DC:33:92:F0"}}},"request":{"raw":"GET /img/hlp_r5t1w6.png HTTP/1.1\r\nHost: beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/\r\nCookie: PHPSESSID=179198b3ef612c0c47e86d7841af841c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nAccept-Ranges: bytes\r\nContent-Length: 7919\r\nContent-Type: image/png\r\nDate: Wed, 20 May 2026 12:51:01 GMT\r\nEtag: \"1eef-6522f55b304c0\"\r\nLast-Modified: Tue, 19 May 2026 17:51:55 GMT\r\nNel: {\"report_to\":\"heroku-nel\",\"response_headers\":[\"Via\"],\"max_age\":3600,\"success_fraction\":0.01,\"failure_fraction\":0.1}\r\nReport-To: {\"group\":\"heroku-nel\",\"endpoints\":[{\"url\":\"https://nel.heroku.com/reports?s=NRqbxzw2wvSv3xvBCPjb0Lg5JEGrylHqZ5OKjXfnwP0%3D\\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\\u0026ts=1779281461\"}],\"max_age\":3600}\r\nReporting-Endpoints: heroku-nel=\"https://nel.heroku.com/reports?s=NRqbxzw2wvSv3xvBCPjb0Lg5JEGrylHqZ5OKjXfnwP0%3D\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\u0026ts=1779281461\"\r\nServer: Heroku\r\nVia: 1.1 heroku-router\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7919,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 182 x 65, 8-bit/color RGBA, non-interlaced","md5":"7f852a1d01f4df863b7b859081198a01","sha1":"b2cdf620becb8e512e787ddbbc30a970f27f3516","sha256":"d4f7ddfc6314caae68b4e0f3a627dbba485816ea941b051f38873b9594f2e535","sha512":"1c66721f6cf885fbbae54475758b2328d43042e12023f771e9e66faf5d909e632ad02a345115a95f6416b74987711bf55f153dff96313ca20d78fa89ae97c75d","ssdeep":"192:uo3bWgZWW7Io/GHyigMDq4GEvHfB53nZkRDEK+Fwafj:uoqvoOHyvM8Ev/XnZkRD6fj","tlshash":"c0f19e9d61da68a5230808ea9c3b39546d470c58fdd252bbe1d161b21863d8df3ff34b","first_seen":"2026-05-20T07:48:44.118521Z","last_seen":"2026-05-20T12:51:27.019805Z","times_seen":2,"resource_available":false,"data":null}},"time_used":683,"timings":{"blocked":292,"dns":1,"connect":94,"send":0,"wait":95,"receive":0,"ssl":195},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-20","alert":"Sinkholed","trigger":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-20","alert":"Phishing Block","trigger":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/favicon.ico","fqdn":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","domain":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","tld":"herokuapp.com"},"ip":{"addr":"54.208.186.182","port":443,"asn":14618,"as":"AMAZON-AES","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/","date":"2026-05-20T12:51:01.267Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"*.herokuapp.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 31 Dec 2025 00:00:00 GMT","end":"Thu, 28 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"CF:30:A6:B6:F2:EC:85:1F:88:2B:05:20:4F:5B:77:A4:B0:67:F1:92","sha256":"93:D1:EA:28:7A:7B:08:B9:38:D7:47:07:5B:14:AE:20:1E:AA:D6:C6:EF:45:0D:EB:8E:04:99:D8:DC:33:92:F0"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com/\r\nCookie: PHPSESSID=179198b3ef612c0c47e86d7841af841c\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nContent-Length: 236\r\nContent-Type: text/html; charset=iso-8859-1\r\nDate: Wed, 20 May 2026 12:51:01 GMT\r\nNel: {\"report_to\":\"heroku-nel\",\"response_headers\":[\"Via\"],\"max_age\":3600,\"success_fraction\":0.01,\"failure_fraction\":0.1}\r\nReport-To: {\"group\":\"heroku-nel\",\"endpoints\":[{\"url\":\"https://nel.heroku.com/reports?s=NRqbxzw2wvSv3xvBCPjb0Lg5JEGrylHqZ5OKjXfnwP0%3D\\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\\u0026ts=1779281461\"}],\"max_age\":3600}\r\nReporting-Endpoints: heroku-nel=\"https://nel.heroku.com/reports?s=NRqbxzw2wvSv3xvBCPjb0Lg5JEGrylHqZ5OKjXfnwP0%3D\u0026sid=e11707d5-02a7-43ef-b45e-2cf4d2036f7d\u0026ts=1779281461\"\r\nServer: Heroku\r\nVia: 1.1 heroku-router\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":236,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"54ddfcfcbac52ccc7451161d40934ad7","sha1":"3f9915360e96bd0c5c756209a62d99b0246a634d","sha256":"9448f8a1159c9b14e3e1b9d8eab1a6ddf88d26e1f888a34cef430c756e4e6e1e","sha512":"b5b31c06e9e8cfc08e09e90bc5ba77c970c5be644c109f14b4b430384d4cecefae4368e051ed96323cfd3fe7a0e9f4832025c2efd213aa64bf65c55625bd72e6","ssdeep":"","tlshash":"61d0a79e90939386415176907ec123d2654953ab78b143e96ec1944690086bdc0d919d","first_seen":"2025-12-07T09:00:18.523222Z","last_seen":"2026-05-20T15:32:30.714031Z","times_seen":4770,"resource_available":true,"data":null}},"time_used":131,"timings":{"blocked":0,"dns":1,"connect":94,"send":0,"wait":94,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-05-20","alert":"Sinkholed","trigger":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-05-20","alert":"Phishing Block","trigger":"beneficioenlinearegistro-7e2bfd9b3de1.herokuapp.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}}]}