{"report_id":"71563654-a1ca-460e-bc73-5f1dab3d5826","version":0,"status":"done","tags":[],"date":"2026-06-29T01:37:53Z","url":{"schema":"http","addr":"hengleeemb.com","fqdn":"hengleeemb.com","domain":"hengleeemb.com","tld":"com"},"ip":{"addr":"146.103.99.142","port":0,"asn":0,"as":"","country":"Belgium","country_code":"BE"},"final":{"url":{"schema":"http","addr":"hengleeemb.com/","fqdn":"hengleeemb.com","domain":"hengleeemb.com","tld":"com"},"title":"Application placeholder","dom":{"size":9924,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"12915d2bc31ccb3ed770d5443719836f","sha1":"e8a56642fe0337fce2f02c709fb7aeb4de9a3039","sha256":"7b98caa7766517883c68e36cd2500fb09ec102249b2a691641f3189323154648","sha512":"da9682772430b250097fcad18077fe1337bc176808a6b796674aa5cfcaa4d98560058648470040fd7691c3be53e62dc786a8f3d1ec7552413c3a8f459af2d39d","ssdeep":"192:OvgC8HJp/KqYQ2xSDhNF9adOwjVXhKRVHnoBl7yKJBGThHaIOlT2OWWLNyq:Ovg7TfVovXSQplT318q","tlshash":"9a2298776aa700257913a0fb3bdb47063679b103c50add2c7ecc62484f46ae995e37ac","dom_hash":"domhash5a0d146c1c0e70a2e8aff91766894502","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"hengleeemb.com","fqdn":"hengleeemb.com","domain":"hengleeemb.com","tld":"com"},"ip":{"addr":"146.103.99.142","port":0,"asn":0,"as":"","country":"Belgium","country_code":"BE"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-03T01:37:53Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"hengleeemb.com","ip":{"addr":"146.103.99.142","port":80,"asn":0,"as":"","country":"Belgium","country_code":"BE"},"domain_registered":"2023-12-24","domain_rank":0,"first_seen":"2026-06-29T01:27:14.741583Z","last_seen":"2026-06-29T01:27:14.741583Z","alert_count":0,"request_count":3,"received_data":10562,"sent_data":1298,"comment":"","tags":null,"fingerprints":[{"name":"Nginx:1.30.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"http","addr":"hengleeemb.com/","fqdn":"hengleeemb.com","domain":"hengleeemb.com","tld":"com"},"ip":{"addr":"146.103.99.142","port":80,"asn":0,"as":"","country":"Belgium","country_code":"BE"},"introduction_type":"scriptElement","is_inline":true,"md5":"8e171315599843dd7ad5a1b6cc5f0172","sha1":"ffe9a0aac7d11e21053878037ae13a939c4e2bc3","sha256":"7d306f2459dc654e0e1e890da4e8636ee158eebd67c74703bfe09a66e2af7b87","sha512":"db5aefa5c5e41b1bed130621871a4d566e75ae26b6d1b1efc5263b7d5419a480280bde626ba14ea3c46971fc098087c7d3a3a750619794811b3fb56d31279301","ssdeep":"","tlshash":"c941346f9d520920999754ef5b4f1110792593633b01be617e0dd3090f2ae2f9372bec","size":2141,"data":"","first_seen":"2026-06-07T14:31:00.230142Z","last_seen":"2026-06-29T01:37:53.83687Z","times_seen":34,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"http","addr":"hengleeemb.com/","fqdn":"hengleeemb.com","domain":"hengleeemb.com","tld":"com"},"ip":{"addr":"146.103.99.142","port":80,"asn":0,"as":"","country":"Belgium","country_code":"BE"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-29T01:37:28.201Z","timestamp":1782697048201,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: hengleeemb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: nginx/1.30.3\r\nDate: Mon, 29 Jun 2026 01:37:28 GMT\r\nContent-Type: text/html; charset=UTF-8\r\nContent-Length: 3150\r\nConnection: keep-alive\r\nVary: Accept-Encoding\r\nContent-Encoding: gzip\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Nginx:1.30.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":9900,"size_decoded":3361,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"391348f3230fc87e55d2bbfe97b996b1","sha1":"c6ddb22e9a5fe3c5cc4d33f2f3fd1fea38f21e5c","sha256":"7f6e6f6ca5ede983b336b3b0e9e7b4f58aa1d967135b1fd76d9abb223c8395fd","sha512":"afc1fe5c0ac431488e96fe75394f8a23751c5161ef76da79071f2c0c5ccc6c6a0b7074e35013675e3d7e4545e3db0e8ebd93fe89758b2e4af479305cd3d04db5","ssdeep":"192:noJgC8HJp/KqYQ2xSDhNF9adOwjVXhKRVHnoBl7yKJBGThHlET2OWWLNyy:n+g7TfVovXSQTT318y","tlshash":"b21298776aa70025b513a0fa3bdb47063679b103c509dd2c7dcc62484f46ae995e37ac","first_seen":"2025-12-19T02:31:27.180574Z","last_seen":"2026-06-29T01:37:53.830629Z","times_seen":397,"resource_available":true,"data":null}},"time_used":61,"timings":{"blocked":-1,"dns":3,"connect":27,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"hengleeemb.com/favicon.ico","fqdn":"hengleeemb.com","domain":"hengleeemb.com","tld":"com"},"ip":{"addr":"146.103.99.142","port":80,"asn":0,"as":"","country":"Belgium","country_code":"BE"},"is_navigation_request":false,"resource_type":"img","requested_by":"http://hengleeemb.com/","date":"2026-06-29T01:37:28.369Z","timestamp":1782697048369,"http_version":"HTTP/1.1","security_state":"insecure","security_info":null,"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: hengleeemb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: http://hengleeemb.com/\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 404 Not Found\r\nServer: nginx/1.30.3\r\nDate: Mon, 29 Jun 2026 01:37:28 GMT\r\nContent-Type: text/html; charset=iso-8859-1\r\nContent-Length: 276\r\nConnection: keep-alive\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Nginx:1.30.3","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":276,"size_decoded":451,"mime_type":"text/html; charset=iso-8859-1","magic":"HTML document, ASCII text","md5":"f8941195d5ab64877a1afc3eba21ab4d","sha1":"2b0ac77999d3fe3ddaa6a1e557ccb42434ed9e08","sha256":"4ada2998cc1e28505e905d8d522a0f572b4d753db6032e119dfb60fd7ce14b32","sha512":"117d92f0b31f20052eb611613e58b471abd07fa9747d171a7573bfd0f96fc807f49d38abd3c171e8bc874f9d3e99c5c7a951e2542d928e9747939bcbfe81268e","ssdeep":"","tlshash":"63d02b9f5053639b4c52156039c515c2264d22f6a43a85e82d86e487629853ecedaa8d","first_seen":"2026-06-29T01:37:53.831249Z","last_seen":"2026-06-29T01:37:53.831249Z","times_seen":1,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"hengleeemb.com/","fqdn":"hengleeemb.com","domain":"hengleeemb.com","tld":"com"},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-06-29T01:37:25.878Z","timestamp":1782697045878,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"GET / HTTP/1.1\r\nHost: hengleeemb.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-29T14:32:22.680856Z","times_seen":16827740,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}