{"report_id":"594f1c46-0a02-4620-a1e6-1796098679db","version":6,"status":"done","tags":[],"date":"2026-03-27T10:29:22Z","url":{"schema":"http","addr":"www.08209.pizza/","fqdn":"www.08209.pizza","domain":"08209.pizza","tld":"pizza"},"ip":{"addr":"206.119.191.36","port":0,"asn":133199,"as":"SonderCloud Limited","country":"United States","country_code":"US"},"final":{"url":{"schema":"http","addr":"162.218.31.50:43345/?r=d3d3LjA4MjA5LnBpenph\u0026rest=Lw==","fqdn":"162.218.31.50","domain":"162.218.31.50","tld":""},"title":"162.218.31.50:43345/?r=d3d3LjA4MjA5LnBpenph\u0026rest=Lw==","dom":{"size":155,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"449aa9384e409572025908607a9d7a95","sha1":"609932ca07742e8c4fb3780ae1e714496f194e19","sha256":"589a2704c7922d70fa653a59b6b2d761b7bc67dae73304f659b37d8a6fe91ca2","sha512":"c070682c1028767c5f88e1b3174b0b604bfd14d4b06d9bfe74ed305ae1486267cf986a3d076cc25ae3601f7d2a88cb8e0047dae74e831d09adcf580e14092675","ssdeep":"","tlshash":"60c08cbb2509055ea32479c6d8a62208b8d01008f0260c14bb801224c1c031d80caa84","dom_hash":"domhashc1fec9cafeadbac0b33c1409ff211c3f","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"www.08209.pizza/","fqdn":"www.08209.pizza","domain":"08209.pizza","tld":"pizza"},"ip":{"addr":"206.119.191.36","port":0,"asn":133199,"as":"SonderCloud Limited","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-01T10:29:22Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"www.08209.pizza","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"162.218.31.50","ip":{"addr":"162.218.31.50","port":43345,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":2,"received_data":375,"sent_data":833,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.08209.pizza","ip":{"addr":"206.119.191.42","port":443,"asn":133199,"as":"SonderCloud Limited","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":1,"request_count":1,"received_data":1301,"sent_data":484,"comment":"","tags":null,"fingerprints":[{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"www.08209.pizza/","fqdn":"www.08209.pizza","domain":"08209.pizza","tld":"pizza"},"ip":{"addr":"206.119.191.42","port":443,"asn":133199,"as":"SonderCloud Limited","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"51ba5b087d73707049c67381aaef1711","sha1":"17b31f6e8f992bfee11bc6893b9cd5d8f7e571f1","sha256":"81d6b8c4d1b3472e2a544d257b45d42543b283988ab8ffdc5a567bfc3f215ecd","sha512":"33351d2f70981ca4e55f1367abeac126a9111145a9f340e89d802ab864705d3b843c29c376d8acc5033652b23d0b67ff53e1eb7b2b797f0c80ca597e43eb3321","ssdeep":"","tlshash":"63f02b9a218305a59eb37276a72fb34b756320e32954d1017a0c7841af3ce4f567dae4","size":586,"data":"","first_seen":"2026-02-13T06:25:48.716914Z","last_seen":"2026-04-02T15:51:45.239985Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"http","addr":"162.218.31.50:43345/?r=d3d3LjA4MjA5LnBpenph\u0026rest=Lw==","fqdn":"162.218.31.50","domain":"162.218.31.50","tld":""},"ip":{"addr":"162.218.31.50","port":43345,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-27T10:29:01.583Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /?r=d3d3LjA4MjA5LnBpenph\u0026rest=Lw== HTTP/1.1\r\nHost: 162.218.31.50:43345\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nCache-Control: no-store, no-cache, must-revalidate, max-age=0\r\nContent-Type: text/plain; charset=utf-8\r\nExpires: 0\r\nPragma: no-cache\r\nDate: Fri, 27 Mar 2026 10:29:01 GMT\r\nContent-Length: 31\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":31,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"Unicode text, UTF-8 text","md5":"7b82b11bb3292a5a8d8daee30d18ab91","sha1":"f898a1a28e267cd1060f6b85777be44ac5fcdde0","sha256":"73899ecf27cca943bd82aadc58b6d547944fbbfdf7a3655a8ec388034d0f972e","sha512":"3184cd432a93ed43cc3aaa2572337a06ae8b1e18f743841f6ff8a32325302a644fde333db92ff96375c37ce5d563e17b0826a81701bed8589b22ae1bf83a9e19","ssdeep":"","tlshash":"f080002c08ae02a8030a8003883c8e8a28b0220c30020c08af202200a000e2e00ce880","first_seen":"2025-10-02T08:51:38.730868Z","last_seen":"2026-04-01T07:05:43.109952Z","times_seen":7,"resource_available":true,"data":null}},"time_used":450,"timings":{"blocked":150,"dns":0,"connect":150,"send":0,"wait":150,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"162.218.31.50:43345/favicon.ico","fqdn":"162.218.31.50","domain":"162.218.31.50","tld":""},"ip":{"addr":"162.218.31.50","port":43345,"asn":8796,"as":"FD-298-8796","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://162.218.31.50:43345/?r=d3d3LjA4MjA5LnBpenph\u0026rest=Lw==","date":"2026-03-27T10:29:01.947Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: 162.218.31.50:43345\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: http://162.218.31.50:43345/?r=d3d3LjA4MjA5LnBpenph\u0026rest=Lw==\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nContent-Type: text/plain\r\nDate: Fri, 27 Mar 2026 10:29:02 GMT\r\nContent-Length: 18\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":null,"data":{"size":18,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"53af239ee5d3e261545dededcb6ffd57","sha1":"04ca7e137e1e9feead96a7df45bb67d5ab3de190","sha256":"99eb12f2ab3c4866a353e098ffa3cb7a967e617c49b98480394ec5d8ea92b094","sha512":"c734e4a5ff5d335a91518dbf47861bdaf8012af49371dcd2e3350e269c9a5a1cc094114d17c4f5b053f3757b4b07487ebd0d309c91ef97acf4665cc5d5c9a2d3","ssdeep":"","tlshash":"ec70000c080202082020002822800020080802002a802220000aa00882000000800888","first_seen":"2023-04-05T07:16:36Z","last_seen":"2026-04-05T05:53:31.247793Z","times_seen":3705,"resource_available":true,"data":null}},"time_used":150,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":150,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.08209.pizza/","fqdn":"www.08209.pizza","domain":"08209.pizza","tld":"pizza"},"ip":{"addr":"206.119.191.42","port":443,"asn":133199,"as":"SonderCloud Limited","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-27T10:28:59.814Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"08209.pizza","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Sat, 28 Feb 2026 09:46:46 GMT","end":"Fri, 29 May 2026 09:46:45 GMT"},"fingerprint":{"sha1":"07:79:3F:95:70:67:4B:ED:8F:53:BD:63:B8:20:F8:D2:95:8E:AD:1A","sha256":"67:9F:E4:5F:1C:53:E9:3D:14:5B:F8:1F:84:26:8A:95:0B:8C:B1:66:97:A3:74:11:D9:E7:DC:C7:EE:54:0B:92"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: www.08209.pizza\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Fri, 27 Mar 2026 10:29:01 GMT\r\nContent-Type: text/html;charset=UTF-8\r\nTransfer-Encoding: chunked\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nCache-Control: max-age=259200\r\nServer: Tengine\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]}],"data":{"size":1059,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"c55088e5d4fae0d91ad66d76e31da0df","sha1":"54b11c2ee30240f304cd1c0b7c265ef61e427ae9","sha256":"0ce57e43bac1e5066629b544f16daf9e7427a21d1905ebc04206004b1bcf2e7c","sha512":"4b832d2ea9f7ba211a1751a9ff32fc0817a923c52027bfe4055bb9cc8cc447d09ae0e126dd3005227a82c37139a778685cf9fa132768a64051a2cec3b04702dd","ssdeep":"","tlshash":"4311545610d3002a4eb3a2615ba6f30f798361d36616c000b79c68829fb8e4fc9fb5e8","first_seen":"2026-02-13T06:25:48.715928Z","last_seen":"2026-04-02T15:51:45.233584Z","times_seen":9,"resource_available":true,"data":null}},"time_used":2600,"timings":{"blocked":1009,"dns":464,"connect":268,"send":0,"wait":582,"receive":0,"ssl":275},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-27","alert":"Sinkholed","trigger":"www.08209.pizza","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}