{"report_id":"75e702e6-5edc-44f9-89d1-527b9c81ef7e","version":6,"status":"done","tags":[],"date":"2025-12-27T20:51:10Z","url":{"schema":"http","addr":"Stats-dss5042-serving.com","fqdn":"stats-dss5042-serving.com","domain":"stats-dss5042-serving.com","tld":"com"},"ip":{"addr":"74.117.182.49","port":0,"asn":40824,"as":"WZ-US-40824","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"stats-dss5042-serving.com/","fqdn":"stats-dss5042-serving.com","domain":"stats-dss5042-serving.com","tld":"com"},"title":"WORKS","dom":{"size":148,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"78f1efdb6e6352b3523de31495d07ba8","sha1":"4dc02b76073c4bfe57771ac26dd8b9585d9911e4","sha256":"12d44c13ad29841de71c76ca246db4ee5110e6ae12ae6c2601e4497a297e92ee","sha512":"7f9c590bd0de74a02402b36535bc9af42a1a0d5dfd3f631e1bac2a8fb6aec21d9976fe74d988918b967d4a62df86f9ce65ac7bc1bc0ca64103cb56874bad36bd","ssdeep":"","tlshash":"bfc02b8b2002480b67f087a90ad1b27cb48b3d4da040ec60f701203744ec721c8130d8","dom_hash":"domhash0d424e762216810f68a942658c251a51","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"Stats-dss5042-serving.com","fqdn":"stats-dss5042-serving.com","domain":"stats-dss5042-serving.com","tld":"com"},"ip":{"addr":"74.117.182.49","port":0,"asn":40824,"as":"WZ-US-40824","country":"United States","country_code":"US"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-01-31T20:51:10Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-27","alert":"Sinkholed","trigger":"stats-dss5042-serving.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-27","alert":"Sinkholed","trigger":"stats-dss5042-serving.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"stats-dss5042-serving.com","ip":{"addr":"74.117.182.49","port":443,"asn":40824,"as":"WZ-US-40824","country":"United States","country_code":"US"},"domain_registered":"2024-12-31","domain_rank":0,"first_seen":"2025-12-27T20:51:10.616302Z","last_seen":"2025-12-27T20:51:10.616302Z","alert_count":2,"request_count":1,"received_data":408,"sent_data":494,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":null,"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"stats-dss5042-serving.com/","fqdn":"stats-dss5042-serving.com","domain":"stats-dss5042-serving.com","tld":"com"},"ip":{"addr":"74.117.182.49","port":443,"asn":40824,"as":"WZ-US-40824","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-12-27T20:50:48.597Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"stats-dss5042-serving.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Oct 2025 08:07:03 GMT","end":"Tue, 27 Jan 2026 08:07:02 GMT"},"fingerprint":{"sha1":"D7:7C:42:0B:70:5F:98:77:28:B1:85:35:E6:B4:CC:03:73:EB:CF:40","sha256":"17:35:0D:48:98:69:E7:BB:E4:55:A1:02:9B:8F:D9:A6:02:8D:73:D4:15:C5:AE:7B:A7:C1:3C:81:D8:2C:6D:EF"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: stats-dss5042-serving.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\netag: W/\"165-1766404104000\"\r\nlast-modified: Mon, 22 Dec 2025 11:48:24 GMT\r\ncontent-type: text/html\r\ndate: Sat, 27 Dec 2025 20:50:48 GMT\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":165,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"b38f121f65c4743f6c300e6bb650bf6e","sha1":"fd232986c1f4d832b387ed6eb40ff2bb8d5e0945","sha256":"43be9327305d135bb2825b6189ed01c0dd2fb1d0afc4988d7229f68e87452d2d","sha512":"5ea780b6b7faa873799ed35131a93c20149b32b21928a4436ac2c550728f5a4fe7759e2d0a68916b4536240fcf63d53a5abeab86878ebab3ec34a8062864d82e","ssdeep":"","tlshash":"eac08c8a2002490612a087950bd1a268b08b3b9db480a8a0a782a02798ecb21d8230d8","first_seen":"2023-05-21T19:47:17Z","last_seen":"2026-03-23T02:32:02.350876Z","times_seen":62,"resource_available":true,"data":null}},"time_used":680,"timings":{"blocked":275,"dns":10,"connect":129,"send":0,"wait":130,"receive":0,"ssl":133},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2025-12-27","alert":"Sinkholed","trigger":"stats-dss5042-serving.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2025-12-27","alert":"Sinkholed","trigger":"stats-dss5042-serving.com","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}