{"report_id":"4d2e6b3e-728a-4763-b335-55a653729e28","version":6,"status":"done","tags":[],"date":"2026-03-06T06:51:31Z","url":{"schema":"http","addr":"axora.st","fqdn":"axora.st","domain":"axora.st","tld":"st"},"ip":{"addr":"151.247.193.142","port":0,"asn":0,"as":"","country":"Iran","country_code":"IR"},"final":{"url":{"schema":"https","addr":"axora.st/","fqdn":"axora.st","domain":"axora.st","tld":"st"},"title":"Sorry, the website has been stopped","dom":{"size":58063,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (56754)","md5":"08bbc48bd4367a97d81de5fe3d8a5075","sha1":"fd89ef1206826770aed688845872fed60fef2ed9","sha256":"0ffcb5db8c529a81f712be6e52d4b29480a3d39ddb26d46ddbda031f6375b820","sha512":"2aa773269ee5be59da88d14dd8662750736bee9f3a620603fb65b8e39315e0bdb035823913f1727ae3b4af817e11a4bbeda295d4f692165f107a6ba0697403ef","ssdeep":"768:FHJYDDQHVZHIs91TXESJBjgBSp00yCqJ3Z+IYM3WiesRQiULO0bpD9tcNQEfdomj:lmDD6oeFUycwpk06hWp1b99c7Vl","tlshash":"8d43021803de40a2cd9d7cd9422f2f39842a5863da1c94bd2f5b6db5ca0c8a46a7f1e5","dom_hash":"domhash22f468c4cddc2c4ffa84aff43b3328bd","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"axora.st","fqdn":"axora.st","domain":"axora.st","tld":"st"},"ip":{"addr":"151.247.193.142","port":0,"asn":0,"as":"","country":"Iran","country_code":"IR"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-10T06:51:31Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"axora.st","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"axora.st","ip":{"addr":"151.247.193.142","port":443,"asn":0,"as":"","country":"Iran","country_code":"IR"},"domain_registered":"2025-11-16","domain_rank":0,"first_seen":"2026-03-06T06:51:32.139067Z","last_seen":"2026-03-06T06:51:32.139068Z","alert_count":2,"request_count":2,"received_data":58952,"sent_data":900,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"axora.st/favicon.ico","fqdn":"axora.st","domain":"axora.st","tld":"st"},"ip":{"addr":"151.247.193.142","port":443,"asn":0,"as":"","country":"Iran","country_code":"IR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://axora.st/","date":"2026-03-06T06:51:10.870Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"axora.st","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Feb 2026 16:25:05 GMT","end":"Fri, 29 May 2026 16:25:04 GMT"},"fingerprint":{"sha1":"04:FA:5E:E0:A9:8C:1E:C2:4E:C6:C0:B1:E0:77:CA:B4:AE:2A:43:4F","sha256":"E2:5B:86:D0:0C:6E:62:76:7E:1D:0A:44:76:D5:D8:BB:27:40:B2:D3:0F:BA:2E:D9:36:E3:8E:97:1B:B2:0C:0E"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: axora.st\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://axora.st/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: Apache\r\nDate: Fri, 06 Mar 2026 06:51:10 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nContent-Length: 254\r\nEggy-Wall: 12.5\r\nAbuse: abuse@eggywall.cc\r\nX-Cache: HIT\r\nX-Cache-Url: https://axora.st/favicon.ico\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":254,"size_decoded":0,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"3dedc406d46452331ca0b3c646c7c932","sha1":"e4b83b8c5be1f0ea665f75e15eaf87ab380b20eb","sha256":"e87db3b3ccbd5d745764801c32382825beac93c13aa6dcc453406f9f19e0b858","sha512":"492553f490127b92749dbf597299331c915938d3ec772160395a75ce786a84225290c23f18c4ba9f825062ea96cd13fa6ea010b8fdc10b4b20e4397a92053bce","ssdeep":"","tlshash":"84d097ae90873387481224a039c619d2238813fab43981e8be8ae487525c93dccca2cd","first_seen":"2026-03-06T06:51:35.291081Z","last_seen":"2026-03-06T06:54:53.092118Z","times_seen":2,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"axora.st","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"axora.st/","fqdn":"axora.st","domain":"axora.st","tld":"st"},"ip":{"addr":"151.247.193.142","port":443,"asn":0,"as":"","country":"Iran","country_code":"IR"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-06T06:51:10.455Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"axora.st","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Feb 2026 16:25:05 GMT","end":"Fri, 29 May 2026 16:25:04 GMT"},"fingerprint":{"sha1":"04:FA:5E:E0:A9:8C:1E:C2:4E:C6:C0:B1:E0:77:CA:B4:AE:2A:43:4F","sha256":"E2:5B:86:D0:0C:6E:62:76:7E:1D:0A:44:76:D5:D8:BB:27:40:B2:D3:0F:BA:2E:D9:36:E3:8E:97:1B:B2:0C:0E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: axora.st\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: Apache\r\nDate: Fri, 06 Mar 2026 06:51:10 GMT\r\nContent-Type: text/html\r\nContent-Encoding: gzip\r\nContent-Length: 43730\r\nEggy-Wall: 12.5\r\nAbuse: abuse@eggywall.cc\r\nX-Cache: HIT\r\nVary: Accept-Encoding\r\nEtag: \"e2f0-63122d6c2be80-gzip\"\r\nLast-Modified: Tue, 25 Mar 2025 04:06:02 GMT\r\nAccept-Ranges: bytes\r\nX-Cache-Url: https://axora.st/\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":58096,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (56749)","md5":"608a874a5af662143c869e40785bd820","sha1":"ce01e2dd60fbdefe33fbbdd60ca7b7808e8f738b","sha256":"22f30b0651f3a8c4a8016d268d6c654a1aeb5af6f12124722a7949f7ed0d57c9","sha512":"1b7175b7a0d00e91178272e21cb6e2afe2393635889497069f025befbfc39b770e3abfaaee67fd3b2888f8b4ab04418c5b84472234f9d817f086cdb1a8bd667b","ssdeep":"768:THJYDDQHVZHIs91TXESJBjgBSp00yCqJ3Z+IYM3WiesRQiULO0bpD9tcNQEfdom4:TmDD6oeFUycwpk06hWp1b99c7Va","tlshash":"7f430218039e40a2cd9d7cd9422f2f3d842a1863da0c94bd2f5b6db5ca0c8a46a7f1e5","first_seen":"2025-04-07T11:38:25.642966Z","last_seen":"2026-05-30T23:29:50.581414Z","times_seen":103,"resource_available":true,"data":null}},"time_used":552,"timings":{"blocked":218,"dns":128,"connect":38,"send":0,"wait":39,"receive":77,"ssl":50},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-06","alert":"Sinkholed","trigger":"axora.st","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}