{"report_id":"7112a8d7-a230-4b78-8aa3-60a41f2cd25c","version":6,"status":"done","tags":[],"date":"2025-10-05T07:36:12Z","url":{"schema":"http","addr":"m.moneclick.top/?utm_medium=e8df07b623fdb789b633b70990660fe82eaea97b\u0026utm_campaign=target_us_ed6d11\u0026cid=e1d0517b4ghdz6ce\u0026np=1","fqdn":"m.moneclick.top","domain":"moneclick.top","tld":"top"},"ip":{"addr":"108.178.23.118","port":0,"asn":32475,"as":"SINGLEHOP-LLC","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"m.moneclick.top/?utm_term=7557638128681353271\u0026tid=57696e3332","fqdn":"m.moneclick.top","domain":"moneclick.top","tld":"top"},"title":"404 Not Found"},"submit":{"url":{"schema":"http","addr":"m.moneclick.top/?utm_medium=e8df07b623fdb789b633b70990660fe82eaea97b\u0026utm_campaign=target_us_ed6d11\u0026cid=e1d0517b4ghdz6ce\u0026np=1","fqdn":"m.moneclick.top","domain":"moneclick.top","tld":"top"},"ip":{"addr":"108.178.23.118","port":0,"asn":32475,"as":"SINGLEHOP-LLC","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-11-09T07:36:12Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-05","alert":"Sinkholed","trigger":"m.moneclick.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null},"summary":[{"fqdn":"m.moneclick.top","ip":{"addr":"108.178.23.118","port":443,"asn":32475,"as":"SINGLEHOP-LLC","country":"United States","country_code":"US"},"domain_registered":"2025-09-30","domain_rank":0,"first_seen":"2025-10-05T01:05:41.213922Z","last_seen":"2025-10-05T01:05:41.213922Z","alert_count":3,"request_count":3,"received_data":4322,"sent_data":1745,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]},{"fqdn":"app.monetizer.com","ip":{"addr":"69.175.50.226","port":443,"asn":32475,"as":"SINGLEHOP-LLC","country":"United States","country_code":"US"},"domain_registered":"2004-03-03","domain_rank":2291072,"first_seen":"2017-02-09T03:28:47Z","last_seen":"2025-09-29T14:39:20.594261Z","alert_count":0,"request_count":1,"received_data":3203,"sent_data":447,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"m.moneclick.top/?utm_term=7557638128681353271\u0026tid=57696e3332","fqdn":"m.moneclick.top","domain":"moneclick.top","tld":"top"},"ip":{"addr":"108.178.23.118","port":443,"asn":32475,"as":"SINGLEHOP-LLC","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-05T07:35:50.671Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"m.moneclick.top","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Sep 2025 14:19:07 GMT","end":"Mon, 29 Dec 2025 14:19:06 GMT"},"fingerprint":{"sha1":"35:B7:54:4C:A9:17:1E:EA:6F:7F:F5:07:21:84:21:C0:50:8B:B3:9E","sha256":"E1:A3:E0:D7:B6:8C:1F:90:70:B0:E3:A2:88:E0:EB:F7:91:75:1D:AA:37:11:E6:79:93:87:02:E4:EC:4E:A1:6D"}}},"request":{"raw":"GET /?utm_term=7557638128681353271\u0026tid=57696e3332 HTTP/1.1\r\nHost: m.moneclick.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.moneclick.top/?utm_medium=e8df07b623fdb789b633b70990660fe82eaea97b\u0026utm_campaign=target_us_ed6d11\u0026cid=e1d0517b4ghdz6ce\u0026np=1\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: nginx\r\ndate: Sun, 05 Oct 2025 07:35:50 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\ncache-control: no-store, no-cache, must-revalidate, max-age=0\r\npragma: no-cache\r\nexpires: Thu, 01 Jan 1970 00:00:00 GMT\r\naccept-ch: Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nalt-svc: h3=\":443\"; ma=604800; persist=1\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":553,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (553), with no line terminators","md5":"f6f4f0a23b4dab6627ddd0690bf4b24e","sha1":"9e2e175e98f08af276830f7c8431911392da7544","sha256":"92067bd8e54c663e28c1ee0e0d38e525adf0b6c9ef3174a7a5f5eefbbd848636","sha512":"558a0c85b8b8710c8bcce8efb18b83bc8a0ba68afae2cdde8c748d22171fe7d8f404c9079c6427d8332af259df5a87b59f1cbbff69c8c330b17d6b0bf5c67815","ssdeep":"","tlshash":"c5f08b5ec0861084716254d4f0c37bd49428028faea74eecbe7569a9ae871fa533a79c","first_seen":"2024-08-19T23:27:02.342485Z","last_seen":"2026-04-02T12:22:45.070113Z","times_seen":425,"resource_available":true,"data":null}},"time_used":108,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":108,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-05","alert":"Sinkholed","trigger":"m.moneclick.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"app.monetizer.com/images/monetizer.png","fqdn":"app.monetizer.com","domain":"monetizer.com","tld":"com"},"ip":{"addr":"69.175.50.226","port":443,"asn":32475,"as":"SINGLEHOP-LLC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.moneclick.top/?utm_term=7557638128681353271\u0026tid=57696e3332","date":"2025-10-05T07:35:50.801Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"monetizer.com","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 02 Oct 2025 12:22:54 GMT","end":"Wed, 31 Dec 2025 12:22:53 GMT"},"fingerprint":{"sha1":"BD:15:84:CE:E7:BF:2A:69:5F:3B:1B:94:E1:63:83:19:7D:DA:11:1E","sha256":"95:E1:85:B5:36:A1:D3:97:C4:A9:DF:8E:B5:04:01:29:1E:3F:0E:78:9F:BF:DB:96:7A:BA:72:F4:65:38:B0:A6"}}},"request":{"raw":"GET /images/monetizer.png HTTP/1.1\r\nHost: app.monetizer.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.moneclick.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 05 Oct 2025 07:35:56 GMT\r\ncontent-type: image/png\r\ncontent-length: 2763\r\nlast-modified: Fri, 03 Oct 2025 17:43:15 GMT\r\netag: \"68e00b33-acb\"\r\nexpires: Mon, 06 Oct 2025 07:35:56 GMT\r\ncache-control: max-age=86400\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nalt-svc: h3=\":443\"; ma=604800; persist=1\r\nx-frame-options: SAMEORIGIN\r\naccept-ranges: bytes\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":2763,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 149, 8-bit colormap, non-interlaced","md5":"03a4f7ed6a82302928cb627d8c4b7ba4","sha1":"ee1470782b782b0b1d7e59616fe5d476c2ac08b2","sha256":"a907a5abbd6b6e9435a8d503c6a9c05767fd296d59dd6e5fee73e6bc96a9f29c","sha512":"3435aaa7de7ca957c0661fac94fc2b72b35f2bcda15507d14bafa5b1ad9c753646e3beb9aab3d1c4140b9538332d70c73ef7e5a039a530273c98a60e3e5bedb4","ssdeep":"","tlshash":"e5511bde2e56fc6964a011f58bf5870348347eca2d60317300bd7cd2988e25c7e76698","first_seen":"2023-05-01T09:57:29Z","last_seen":"2026-04-02T12:22:45.070716Z","times_seen":499,"resource_available":false,"data":null}},"time_used":10670,"timings":{"blocked":5274,"dns":5032,"connect":120,"send":0,"wait":120,"receive":0,"ssl":123},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"m.moneclick.top/favicon.ico","fqdn":"m.moneclick.top","domain":"moneclick.top","tld":"top"},"ip":{"addr":"108.178.23.118","port":443,"asn":32475,"as":"SINGLEHOP-LLC","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://m.moneclick.top/?utm_term=7557638128681353271\u0026tid=57696e3332","date":"2025-10-05T07:35:50.899Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"m.moneclick.top","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Sep 2025 14:19:07 GMT","end":"Mon, 29 Dec 2025 14:19:06 GMT"},"fingerprint":{"sha1":"35:B7:54:4C:A9:17:1E:EA:6F:7F:F5:07:21:84:21:C0:50:8B:B3:9E","sha256":"E1:A3:E0:D7:B6:8C:1F:90:70:B0:E3:A2:88:E0:EB:F7:91:75:1D:AA:37:11:E6:79:93:87:02:E4:EC:4E:A1:6D"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: m.moneclick.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://m.moneclick.top/?utm_term=7557638128681353271\u0026tid=57696e3332\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: nginx\r\ndate: Sun, 05 Oct 2025 07:35:50 GMT\r\ncontent-type: image/x-icon\r\ncontent-length: 1150\r\nlast-modified: Fri, 11 Aug 2023 10:37:02 GMT\r\netag: \"64d60f4e-47e\"\r\nexpires: Mon, 06 Oct 2025 07:35:50 GMT\r\ncache-control: max-age=86400\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nalt-svc: h3=\":443\"; ma=604800; persist=1\r\naccept-ranges: bytes\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":1150,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel","md5":"91abe01116ab422c598e9c8af72cf4da","sha1":"0f2815fe8e067d48537ad168225ab4674271fa27","sha256":"b1d7aef06456fe7431124129a28f0138bb5fccfa4f4161e3087de23c005e5edc","sha512":"a4d5b20c3014153b6b382c43404917bd2cb5bd2a59bb1e981f5a19eb7dbdec185ace288e9700428d24e5ac623e45d04905e706f0c45a1642b1aa6c091213c23c","ssdeep":"","tlshash":"172122f879c64fb4c438be3f3c4a9ae5ea70aa35efa0831316030446d42dbfd0825595","first_seen":"2023-04-05T07:36:26Z","last_seen":"2026-04-02T16:23:00.764474Z","times_seen":5052,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":103,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-05","alert":"Sinkholed","trigger":"m.moneclick.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"m.moneclick.top/?utm_medium=e8df07b623fdb789b633b70990660fe82eaea97b\u0026utm_campaign=target_us_ed6d11\u0026cid=e1d0517b4ghdz6ce\u0026np=1","fqdn":"m.moneclick.top","domain":"moneclick.top","tld":"top"},"ip":{"addr":"108.178.23.118","port":443,"asn":32475,"as":"SINGLEHOP-LLC","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-10-05T07:35:50.269Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"m.moneclick.top","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Tue, 30 Sep 2025 14:19:07 GMT","end":"Mon, 29 Dec 2025 14:19:06 GMT"},"fingerprint":{"sha1":"35:B7:54:4C:A9:17:1E:EA:6F:7F:F5:07:21:84:21:C0:50:8B:B3:9E","sha256":"E1:A3:E0:D7:B6:8C:1F:90:70:B0:E3:A2:88:E0:EB:F7:91:75:1D:AA:37:11:E6:79:93:87:02:E4:EC:4E:A1:6D"}}},"request":{"raw":"GET /?utm_medium=e8df07b623fdb789b633b70990660fe82eaea97b\u0026utm_campaign=target_us_ed6d11\u0026cid=e1d0517b4ghdz6ce\u0026np=1 HTTP/1.1\r\nHost: m.moneclick.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Sun, 05 Oct 2025 07:35:50 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nvary: Accept-Encoding\r\ncache-control: no-store, no-cache, must-revalidate, max-age=0\r\npragma: no-cache\r\nexpires: Thu, 01 Jan 1970 00:00:00 GMT\r\nrefresh: 3; url=https://m.moneclick.top/?utm_term=7557638128681353271\u0026tid=4d544e\r\naccept-ch: Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nalt-svc: h3=\":443\"; ma=604800; persist=1\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1152,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (1152), with no line terminators","md5":"f3d57ac155af83474b527fb69adbfcbe","sha1":"cd4c8f6bafb78b778b828c373aa70fb59642f813","sha256":"c9c90cc4276fc1325b55cc4d91d02c0d888fd57e9815724869c1809002eef887","sha512":"7219b6a393dd79ecdc4f4768566c4fc6bfb1840e4e6687ef2fa85c6f603233471f0b171ea50f47ace7555e3cde2452015bd568072b36b8fae042509b3b6bfde5","ssdeep":"","tlshash":"162196fca28bc21bf24ecc93d9e6afc708e0c14781c6a605d2817a1980e8948c56674c","first_seen":"2025-10-05T07:36:13.636785Z","last_seen":"2025-10-05T07:36:13.636785Z","times_seen":1,"resource_available":false,"data":null}},"time_used":527,"timings":{"blocked":212,"dns":0,"connect":103,"send":0,"wait":104,"receive":0,"ssl":107},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns0","sensor_type":"DNS","title":"DNS0 Zero","description":"DNS0 Zero","scan_date":"2025-10-05","alert":"Sinkholed","trigger":"m.moneclick.top","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS (SOA: negative-caching.dns0.eu)","link":"https://www.dns0.eu/zero","meta":null}],"urlquery":null}}]}